I sighed when I read the news of the Equifax data breach earlier this week. As most people know, there are three major credit reporting agencies in the states:  Experian. Transunion. Equifax.  News came out this past week that Equifax had been hacked.  As many as 143 million American customers’ data have been compromised.

Chances are:  You are one of them.

How to Check If You’ve Been Hacked   

You can check by visiting a website that Equifax had set up: http://www.equifaxsecurity2017.com.

[Update/Disclaimer: the site is legitimate and it is set up by Equifax – it is even linked to from their website to address the data breach. As noted in the comments, some have expressed concerns about the site security.   If you do not feel comfortable using the link, you can wait for Equifax to notify you].

Click on “Potential Impact” tab and enter your last name and the last six digits of your Social Security Number.  I plugged in my details.  Of course, I expected nothing less:

 

a screenshot of a message

Note:  I have not enroll in the TrustedID Premier because I want to make sure I’m not waiving any rights by enrolling. There appears to be some confusion in regards to whether signing up for the service means waiving rights to class action lawsuits, though Equifax has claimed that the arbitration clause does not apply to this data breach.

Tips on How I Dealt with the Last Data Breach?

I was peeved with the T-Mobile data breach back in 2015.  It was the first data breach that impacted me where my SSN might have been exposed. T-Mobile provided a one year credit protection service for affected customers.  I did a couple of things:

  • Signed up for the one-year credit monitoring.
  • Placed a 90-day fraud alert on all 3 of the credit reporting agencies.  It absolutely worked but it was also inconvenient when it’s my own legitimate request.
  • Looked into changing SSN social security number, but it’s not really a option unless you have been a victim of identity theft and it is continuing to cause “disadvantage”.

In my opinion, the “one year” credit monitoring is quite useless since the compromised data is out there forever.  I don’t see how a standard year of credit monitoring is a sufficient response for a major breach. Hackers can try to steal your identity long after the credit protection is over.

More details will come out in the coming days

I don’t want to rehash too many of the details reported elsewhere, but there are these two great articles if you want to learn more: “What You Need to Know about the Equifax breach” and Equifax Cyberattack.

If you are particularly concerned about the data breach, you can take the drastic measure of freezing your account with all three credit agencies.  This would provide an added layer of security.  Still, this would not prevent a hacker from causing havoc, such as potentially filing a fraudulent tax return for a refund.

I am sure more details will emerge in the coming days.

One thing is clear:  If you are impacted by the data breach, you’ll probably want to look into credit monitoring.