Realcent.org

[Copper Catcher]

Massive Data Breach At Equifax: As Many As 143 Million Social Security Numbers Hacked
Credit-reporting company Equifax shocked investors, and more than a third of America, when it announced on Thursday afternoon that hackers had breached its data systems, compromising the personal information of approximately 143 million U.S. consumers. The information accessed "primarily includes names, Social Security numbers, birth dates, addresses and, in some instances, driver’s license numbers." In other words, pretty much everything that should have been hidden behind an n-number of firewalls, is now available to the dark net's highest bidder.

The company, which in delightful irony offers credit-monitoring and identity-theft protection products to "guard consumers’ personal information", said that it had learned of the incident on July 29, 2017, at which point it reported the intrusion to law enforcement and contracted a cybersecurity firm to conduct a forensic review: based on the company’s investigation, the unauthorized access occurred from mid-May through July 2017. Oddly enough, it took shareholders and over a third of America, more than a month longer to learn that all their personal data may have been compromised.

As if 143 million leaked social security numbers wasn't enough, Equifax said that criminals also accessed credit card numbers for approximately 209,000 U.S. consumers, and certain dispute documents with personal identifying information for approximately 182,000 U.S. consumers. But wait, there's more: the company also identified unauthorized access to limited personal information for certain UK and Canadian residents.

The good news, is that according to Equifax, "this issue has been contained." The bad news is that, well, as many as 143 million social security numbers have been hacked. So no, it's not contained.

“This is clearly a disappointing event for our company, and one that strikes at the heart of who we are and what we do,” Equifax Chief Executive Richard Smith said in prepared remarks. “I apologize to consumers and our business customers for the concern and frustration this causes.”

In a Q&A posted on the company's website, the management team revealed what's really important with the following question and answer:

Does this cybersecurity incident impact your capital allocation priorities going forward?

Our capital allocation priorities are unchanged at this time. As we have previously indicated, our investment
priorities in order of importance are: (1) internal investment; (2) dividends; (3) acquisition; and (4) share
repurchase. We do, however, expect to increase our capital spending in an effort to further accelerate IT
infrastructure, systems and data security and resiliency improvement actions.

Oh, good, because a hack involving 143 million SSNs is one of those cases where capex probably should have taken precedence over stock buybacks. Don't worry though, because as it explains in the same quesionnaire, "Equifax remains committed to delivering on the long term financial model of 7-10% revenue growth and 11%- 14% growth in Adjusted EPS on average over a business cycle. Equifax’s long term financial model reflects our continuing fundamental ability to utilize our unique and differentiated data assets and leading analytical capability to deliver high value products and services to our customers."

Uhm, after this... what customers?

After falling as much as 12% in the after hours, EFX stock stabilized... then fell as much as 19%.

And now the best news: with Putin clearly behind this hack - as "all 17 intelligence agencies", WaPo and NYT will shortly "confirm" - the US economy is about to undergo a renaissance as hundreds of millions of (unsolicited) purchases prompt a golden age for US retailers while sending Amazon market cap into the $1 trillions... even if the shipping address for said purchases happen to be small, frigid villages deep in the Russian taiga.

Update:

In appears there was a reason why EFX decided to hold on to the hacking news a little longer than seems reasonable. As Bloomberg reports, "three Equifax Inc. senior executives sold shares worth almost $1.8 million in the days after the company discovered a security breach that may have compromised information on about 143 million U.S. consumers."

The credit-reporting service said late Thursday in a statement that it discovered the intrusion on July 29. Regulatory filings show that three days later, Chief Financial Officer John Gamble sold shares worth $946,374 and Joseph Loughran, president of U.S. information solutions, exercised options to dispose of stock worth $584,099. Rodolfo Ploder, president of workforce solutions, sold $250,458 of stock on Aug. 2. None of the filings lists the transactions as being part of 10b5-1 pre-scheduled trading plans.

Surely, it was all purely a coincidence, even though had they waited until today, their proceeds would be well over 10% lower...

[68Camaro]

Geez...

[IdahoCopper]

Maybe its a false flag hack to change security methods to what ... implanted chips?

[Changechecker]

No good. Time to get a credit report check.

[highroller4321]

Equifax executives sold stock after data breach, before informing public!!

http://www.marketwatch.com/story/equifa ... 2017-09-07

[Recyclersteve]

I don't know what the source is for the initial posting, but the claim that EFX was down 19% in after hours Thursday is wrong. It was down over $19, not 19%. The low in after hours, according to the Wall St. Journal, was $122.22- this equates to a loss of 14.4%.

Nonetheless, this is a very shameful event for a company which has access to so much private information and should clearly know better. On the other hand, if there is just a single dishonest person willing to sell private info to the highest bidder, I'm not sure how any company can avoid data breaches like this- other than by being lucky enough to hire only honest people. And who in the world could make that claim?

After so many of these situations occurring in the past five to ten years, I've become a bit numb to the subject. If you Google the term "data breach" and precede it with a company name, you will find hits for all of the following and many more:

1. Home Depot
2. Costco
3. J.P. Morgan Chase (and they had the famous "London Whale" trader who singlehandedly lost them billions)
4. BofA
5. Wells Fargo (oh yeah, they also opened a bunch of fake accounts for people too)

Oh yeah, as the man at the beginning of Hill St. Blues used to say "Let's be careful out there!"

[johnbrickner]

Equifax executives sold stock after data breach, before informing public!!

http://www.marketwatch.com/story/equifa ... 2017-09-07

Even though reported as company officers are required according to the SEC "Illegal insider trading refers generally to buying or selling a security, in breach of a fiduciary duty or other relationship of trust and confidence, while in possession of material, nonpublic information about the security." Emphasis mine.

Talk about a breach of fiduciary duty.

"Down with the bloody Big Heads." Were I in charge (be glad I'm not,) the greedy bastages would be hanging from the highest yard arm while I did this!

[Recyclersteve]

Add to my list of data breaches above...

Target

[johnbrickner]

Add to my list of data breaches above...

Target

Kmart (Sears) late May this year. Credit card numbers. I was caught up in it. Was refunded by my bank.

[Changechecker]

OK so I went online to initiate a freeze on my information. They want you to put your number out there again. UGH.
I researched further and Equifax and the others also offer their security programs which are all fee based. Incredible the amount of fee's they charge to freeze and unfreeze your information. If even a portion of the victims sign up for this it's into the hundreds of millions which they stand to make. That's the real scam.

[agmoose]

I got my notice from Equifax that my debit card info was obtained in the breach because it is the one I used to lock/freeze my credit reports. So - I called the bank to get a new one.