Equifax lost all your data. All gone.
-
@blakeyrat said in Equifax lost all your data. All gone.:
@karla Dirty minds apparently don't pay a lot of attention to aspect ratio.
-
@karla said in Equifax lost all your data. All gone.:
@blakeyrat said in Equifax lost all your data. All gone.:
@karla Dirty minds apparently don't pay a lot of attention to aspect ratio.
FTFY
-
@polygeekery said in Equifax lost all your data. All gone.:
No.
Remember kids. This is the type of person that knows all about why Gamergaters are not about ethics in journalism. She has them all figured out.
-
Remember, these are the big three companies you should be asking about your credit rating:
-
@ben_lubar said in Equifax lost all your data. All gone.:
I still have no idea what gamergate is.
- Take one extremely small teacup.
- Fill it half-way up with storm.
- Top up with stupid.
- Add hyperbolic reporting by idiots.
-
@djls45 said in Equifax lost all your data. All gone.:
And I recall reading somewhere that the diesel engines at their "most smoggy" setting for highest performance were actually still less polluting than gas vehicles due to the differing fuel efficiencies between gas and diesel.
Different types of engine produce different types of pollutant. Or rather produce most of their pollutants as a particular type; let's not claim any more than that. Each pollutant causes its own type of problems. Diesel engines are noted for producing particulates; these are basically soot, but in extremely small particles, and they're pretty bad for health. Gas engines produce more carbon monoxide (an outright poison) and nitrogen oxides; nitrogen oxides are major causes of photochemical smog.
Modern engines, when fitted with appropriate catalytic converters, can be remarkably clean, producing nothing much more unpleasant than carbon dioxide (which is as close to as benign as pollutants tend to get). Older engines make one hell of a mess.
-
@ben_lubar said in Equifax lost all your data. All gone.:
Remember, these are the big three companies you should be asking about your credit rating:
Unless you're in the UK in which case #3 is
Oh - their website isn't up yet...
-
@ben_lubar Everyone leaves out Innovis. Not too surprising since they don't participate with annualcreditreport.com.
-
@groaner said in Equifax lost all your data. All gone.:
poor HR spook to have to read about Anita Sarkeesian's private life.
Hi HR. Just fyi, I can provide @lolwhat an alibi for those corpses in the parking garage.
-
@djls45 said in Equifax lost all your data. All gone.:
Now I'm curious about shared SSNs in the case that someone went missing, was declared dead, their number was reused, and then they turn up alive and well. Do both people just continue to use that SSN, or does one person or the other get a new one?
They resolve it the same way as when that person's twin impersonated then to marry the rich barron for the diamond mines on his oil ranch.
-
@polygeekery said in Equifax lost all your data. All gone.:
@blakeyrat said in Equifax lost all your data. All gone.:
Was it legal to punch them? I hope so.
Only if they are Nazis.
If more people had punched Nazis in 1935 it would have saved the whole world a lot of grief.
-
@lorne-kates said in Equifax lost all your data. All gone.:
@groaner said in Equifax lost all your data. All gone.:
poor HR spook to have to read about Anita Sarkeesian's private life.
Hi HR. Just fyi, I can provide @lolwhat an alibi for those corpses in the parking garage.
-
? Ever heard of TLS?
-
@tsaukpaetra said in Equifax lost all your data. All gone.:
@1 said in Equifax lost all your data. All gone.:
@tsaukpaetra said in Equifax lost all your data. All gone.:
@blakeyrat said in Equifax lost all your data. All gone.:
the US has no nation-wide ID number
FWIW, my ID number is 5670703057705.
My ID number is 1. Ha!
You have @PJH disease.
-
@boomzilla said in Equifax lost all your data. All gone.:
@tsaukpaetra said in Equifax lost all your data. All gone.:
@1 said in Equifax lost all your data. All gone.:
@tsaukpaetra said in Equifax lost all your data. All gone.:
@blakeyrat said in Equifax lost all your data. All gone.:
the US has no nation-wide ID number
FWIW, my ID number is 5670703057705.
My ID number is 1. Ha!
You have @PJH disease.
Personal Joke Ha disease?
-
@polygeekery said in Equifax lost all your data. All gone.:
@the_quiet_one said in Equifax lost all your data. All gone.:
@anonymous234 I doubt Equifax is going to survive the lawsuits that will come out of this. Even with their stupid waiver, they are going to be class actioned to 1929.
We heard the same thing about Volkswagen. I doubt it will happen.
Why would anyone care to have a class action against Volkswagen? I remember posting...somewhere...that a VW engineer got a prison sentence.
-
@weng said in Equifax lost all your data. All gone.:
@lolwhat said in Equifax lost all your data. All gone.:
@weng said in Equifax lost all your data. All gone.:
@lolwhat Scroll past that and see the bit about opting out of arbitration.
You're gonna have to quote the opt-out clause, because I don't see it. (It's been a long day at work, so I may not be parsing the legalese correctly.) Or do you mean the small-claims provision? Considering that identity theft can cost you quite a bit more than the typical small-claims limits, it is to laugh. Anywho, placing fraud alerts and credit freezes through the various CRAps rather than using TrustedID Premier Shiny-Shit avoids this potential pitfall entirely while still providing some protection.
And what the fuck did that last post of mine deserve a downvote for? :P
Not gonna quote it on mobile because fuck that, but it amounts to "send us a letter saying so within 30 days and you opt out of the entire arbitration and small claims court". It's literally the next section
Also, they have since clarified in their own FAQ that that clause (indeed, the entire agreement) only relates to the credit monitoring service, not to the initial breach.
Also, even if it was so, a judge isn't going to look too kindly on those kind of schemes.
inb4
-
TL;DR:
- Employee portal for managing credit report disputes.
- Username "admin" password "admin".
- The "edit users" page obscures the user's password with dots.
- That's okay, you can view source to see the password.
- All passwords are the same as the username anyway.
- Over 14,000 disputes, each with plaintext national ID number
-
-
@tsaukpaetra The DNI. The Argentinian equivalent to the SSN.
-
@greybeard said in Equifax lost all your data. All gone.:
@tsaukpaetra The DNI. The Argentinian equivalent to the SSN.
-
@dcoder said in Equifax lost all your data. All gone.:
Seems like this was already mentioned a year ago:
https://pbs.twimg.com/media/DJe7s4bUIAAET8o.jpg
(Image from @kennethn)
-
@dcoder said in Equifax lost all your data. All gone.:
@dcoder said in Equifax lost all your data. All gone.:
Seems like this was already mentioned a year ago:
https://pbs.twimg.com/media/DJe7s4bUIAAET8o.jpg
(Image from @kennethn)
I guess they never got around to it...
-
Their username and password were admin/admin
And after you log with admin/admin, you could see the password of all their Argentina's employees clicking view source on the browser:
-
@dcoder said in Equifax lost all your data. All gone.:
@dcoder said in Equifax lost all your data. All gone.:
Seems like this was already mentioned a year ago:
https://pbs.twimg.com/media/DJe7s4bUIAAET8o.jpg
(Image from @kennethn)
I'm...... I'm beyond words. Even with all my experience of stupidity I've seen here, nothing prepared me for reading that statement.
-
@wharrgarbl said in Equifax lost all your data. All gone.:
Their username and password were admin/admin
That's a total and utter failure in their basic duty of care. It goes beyond incompetence into the space of outright negligence, at least on the face of it if that article is correctly reporting facts. Fucking hell.
-
@wharrgarbl I only 'd you by half a day!
-
@masonwheeler said in Equifax lost all your data. All gone.:
@heterodox said in Equifax lost all your data. All gone.:
Yeah, that's completely incorrect. Turns out as of 2011, SSNs are completely randomized. If you were born before then, your first three should match your birthplace in this list: https://www.ssa.gov/employer/stateweb.htm
Nope. It matches a place I used to live at one point, but not where I was born.
Mine matches. I knew they were geographical, didn't realize that had stopped...
-
@masonwheeler said in Equifax lost all your data. All gone.:
@boomzilla Hmm... that's possible, I suppose. Kinda thought that happened at birth though.
Mine was obviously done later. My brothers (1yr and 4yrs younger) have numbers sequential to mine.
-
@tsaukpaetra said in Equifax lost all your data. All gone.:
I guess they never got around to it...
They apparently never got around to fixing this, either:
-
-
@el_heffe The thing I find most disturbing about that picture is the "3rd".
-
@greybeard said in Equifax lost all your data. All gone.:
@el_heffe The thing I find most disturbing about that picture is the "3rd".
Yeah, what even is that? Contact distance?
-
@tsaukpaetra said in Equifax lost all your data. All gone.:
@el_heffe The thing I find most disturbing about that picture is the "3rd".
Yeah, what even is that? Contact distance?
7 degrees of Kevin Bacon kind of metric.
Heffe knows someone who knows someone who took some music composition lessons.
-
Infosec job interview:
Interviewer:
What's this gap in your work history, 2013-2017?Me, hoping no one from Equifax works here:
Prison. I was in prison.
-
https://www.congress.gov/bill/115th-congress/house-bill/2359/text
In this case, "harmonization" means, limiting CRA liability against class action lawsuits.
When was the above bill introduced in the House of Reps? May. Who introduced it? A Con-gressman from Georgia.
When did Equifax supposedly learn of their little issue? May. Where is Equifax based? Georgia.
-
Hmm, I wonder which vulnerability caused this?
The Jakarta Multipart parser in Apache Struts 2 2.3.x before 2.3.32 and 2.5.x before 2.5.10.1 mishandles file upload, which allows remote attackers to execute arbitrary commands via a #cmd= string in a crafted Content-Type HTTP header, as exploited in the wild in March 2017.
-
@lolwhat said in Equifax lost all your data. All gone.:
Barry Loudermilk
I keep reading that we Barry Loudermouth.
-
@el_heffe said in Equifax lost all your data. All gone.:
CSO with some music degrees
When a regular dev has no CS degrees, we flamewar that such degrees don't mean much.
When a C-level technical person has no CS degrees, we laugh and point?
I agree that their CSO is very much at fault here, but I am not so sure her degrees are relevant to that. Her work history would be a better indicator.
-
-
Because people never change careers ever no way it's against the law of the multiverse so it never happens.
-
@raceprouk said in Equifax lost all your data. All gone.:
Because people never change careers ever no way it's against the law of the multiverse so it never happens.
Especially when their degree has the immense income potential of an MFA in Classical Music.
-
@scholrlea said in Equifax lost all your data. All gone.:
@raceprouk said in Equifax lost all your data. All gone.:
Because people never change careers ever no way it's against the law of the multiverse so it never happens.
Especially when their degree has the immense income potential of an MFA in Classical Music.
I dunno, university professors tend to have good salary.
-
@raceprouk said in Equifax lost all your data. All gone.:
Because people never change careers ever no way it's against the law of the multiverse so it never happens.
That is true... but:
- What's her IT security experience before she became CISO of Equifax? Rumor has it that the answer is none.
- How much IT security experience should one have before becoming CISO of a company that possesses sensitive information for billions of people? In my personal opinion, the answer to that should be something significantly greater than zero...
-
@lolwhat said in Equifax lost all your data. All gone.:
Rumor has it that the answer is none.
TFA reports that she was Chief Security Officer at her previous job.
Not that job experience means competence.
-
@greybeard said in Equifax lost all your data. All gone.:
TFA reports that she was Chief Security Officer at her previous job.
Ah gotcha. I hadn't read the TFA and was going off her pre-scrub LinkedIn profile, which merely listed her position as "Professional."
-
@lolwhat Did you mean "the TFA article"?
-
@greybeard said in Equifax lost all your data. All gone.:
@lolwhat Did you mean "the TFA article"?
That's affirmative, yes.
-
@lolwhat said in Equifax lost all your data. All gone.:
I hadn't read the TFA and was going off her pre-scrub LinkedIn profile, which merely listed her position as "Professional."
At least she wasn't an "Amateur."
-
@lolwhat said in Equifax lost all your data. All gone.:
@greybeard said in Equifax lost all your data. All gone.:
TFA reports that she was Chief Security Officer at her previous job.
Ah gotcha. I hadn't read the TFA and was going off her pre-scrub LinkedIn profile, which merely listed her position as "Professional."