Some lawyers have already announced suits that they hope will be class-action cases
In this Saturday, July 21, 2012, photo Equifax Inc., offices are seen, in Atlanta. photo: AP/Mike Stewart, photo: AP/Mike Stewart
11 of September 2017 13:43:06
NEW YORK – Equifax has been scrambling to explain itself since disclosing last week that it exposed vital data about 143 million people — effectively most of the U.S. adult population. It's come under fire from members of Congress, state attorneys general, and people who are getting conflicting answers about whether their information was stolen.The company keeps track of the detailed financial affairs of all U.S. citizens in order to gauge how much of a risk they are for borrowing money. That means it and its competitors, TransUnion and Experian, are a detailed storehouse of some of the most personal and sensitive information of citizens' financial lives. And all of it could be used for identity theft.Here's the latest on what you need to know about the breach:WHAT EQUIFAX IS SAYINGEquifax is trying again to clarify language about people's right to sue, and said Monday it has made other changes to address customer complaints.I just published “How To Protect Yourself From The Equifax Hack” https://t.co/htRy4q3n44— Eric Schneiderman (@AGSchneiderman) September 9, 2017The company is trying to staff up its call centers more in order to handle the increased customer service calls. It also now says people will get randomly generated PINs when they try to put a security freeze in place. People had complained about PINs being based on the time and date requests were made.Equifax also acknowledged that its language particularly over the right to sue has been confusing at best, and said it was removing that language from their website. "Enrolling in the free credit file monitoring and identity theft protection that we are offering as part of this cybersecurity incident does not waive any rights to take legal action," it said.Some lawyers have already announced suits that they hope will be class-action cases.AM I AFFECTED? IT'S BEEN HARD TO TELLEquifax has been the focus of anger and distrust, not only for the breach but over how it initially was handled.It discovered the hack July 29, but didn't publicly announce it until more than a month later. People trying to find out if they were affected have gotten some confusing or contradictory information. Consumers calling the number Equifax set up complained of jammed phone lines and uninformed representatives, and initial responses from the website gave inconsistent responses. Many got no response, just a notice that they could return later to register for identity protection. Equifax says it's fixed the issue of inconsistent responses, in which people could get one response on the computer and a different one when checking on the phone.The site is equifaxsecurity2017.com and the number is 866-447-7559. Equifax also says it'll send a notice to all who had personally identifiable information stolen. Equifax is offering free credit monitoring for a year, which people can sign up for at the website.But considering the size and scope of the breach, it's probably better just to assume you were part of it.
WHO'S INVESTIGATING THIS?A host of state and federal authorities as well as politicians have stepped in to investigate. Credit bureaus like Equifax are lightly regulated compared to other parts of the financial system. Expect more scrutiny from regulators over the credit bureaus.The chairmen of at least two U.S. House committees say they want to hold hearings. Like the Wells Fargo sales scandal, the Equifax breach is causing bipartisan outrage and concern, but there has been no talk of any new laws to further regulate the industry. Several state attorneys general have also said they would investigate, which could result in fines at the state level.Lastly the Consumer Financial Protection Bureau, the nation's watchdog entity for financial issues, says it has the authority to investigate the data breach, and fine and sanction Equifax if warranted.Company executives are also under scrutiny, after it was found that three Equifax executives sold shares worth a combined $1.8 million just a few days after the company discovered the breach, according to documents filed with securities regulators. Equifax said the three executives "had no knowledge that an intrusion had occurred at the time they sold their shares."Given the seriousness of the breach, there are worries about the long-term future of the company. The sole purpose of why Equifax and the other credit bureaus exist is to be a secure storehouse of crucial financial information. Equifax failed at that.The stock has fallen more than 25 percent since Thursday and the company is meeting with investors this week in New York in hopes to contain the fallout.
If you're not worried about the Equifax hack, you should be https://t.co/PDqMc9etGk— CNN (@CNN) September 11, 2017