Personal records data breach

  • Thread starter Thread starter rsm
  • Start date Start date
Anyone else get the feeling that these events over the past decade or so are occurring for an inevitable firesale?
Imagine waking up one day with bank accounts zeroed out, suddenly you owe millions to creditors that you've never heard of, your power bill is past due by decades, not to include all of the infrastructure attacks. I'm guessing some day one stuff of WWIII.

The reality is that as crazy and large of an operation as it sounds like, many of our adversaries have armies of millions who are well enlightened in infosec. I don't really think this is a situation that could be fixed given our reliance on iot, lack of security measures (despite these kinds of things happening over and over for many years),and cost of backing up to networks not connected to the internet. We're idiots in the grand scheme, imo.
 
NowYou'rePlayingWithPower said:
Anyone else get the feeling that these events over the past decade or so are occurring for an inevitable firesale?
Imagine waking up one day with bank accounts zeroed out, suddenly you owe millions to creditors that you've never heard of, your power bill is past due by decades, not to include all of the infrastructure attacks. I'm guessing some day one stuff of WWIII.
Click to expand...
I’ve definitely considered this sort of scenario. I used to get bank statements by mail because it just seemed to fleeting to keep everything on easily manipulated computer systems. I also store personal data, IE photos etc. locally and off the cloud.
 
NowYou'rePlayingWithPower said:
Anyone else get the feeling that these events over the past decade or so are occurring for an inevitable firesale?
Imagine waking up one day with bank accounts zeroed out, suddenly you owe millions to creditors that you've never heard of, your power bill is past due by decades, not to include all of the infrastructure attacks. I'm guessing some day one stuff of WWIII.

The reality is that as crazy and large of an operation as it sounds like, many of our adversaries have armies of millions who are well enlightened in infosec. I don't really think this is a situation that could be fixed given our reliance on iot, lack of security measures (despite these kinds of things happening over and over for many years),and cost of backing up to networks not connected to the internet. We're idiots in the grand scheme, imo.
Click to expand...
I have everything locked and monitored; I have 2 active monitor services due to two prior breaches - not including this breach, and one I've had on my own. You just have to monitor everything closely, regularly and consistently.

in this latest breach, they said none of the compromised data was encrypted - WTF?! The data includes SSN, phone, dob, addresses, email addresses, etc., it even has work addresses, etc. going back decades.
 
japetus said:
My first step would to be NOT to use the free tool to check if you are on a list.
Click to expand...
true; however verify first;

also, they don't ask for any compromising information to search; and the results returned valid emails, addresses, phone numbers, and SSN. going back decades. and the results of the search contain real data that has been compromised and leaked

either way, it's probable you're data has been compromised and is available to hackers; so protect yourself, and monitor your financial data more frequently, etc.
 
rsm said:
I have everything locked and monitored; I have 2 active monitor services due to two prior breaches - not including this breach, and one I've had on my own. You just have to monitor everything closely, regularly and consistently.

in this latest breach, they said none of the compromised data was encrypted - WTF?! The data includes SSN, phone, dob, addresses, email addresses, etc., it even has work addresses, etc. going back decades.
Click to expand...
I just looked myself up and all the info is 20+years old.
Not that my SSN number or birthday changed...
 
  • Like
Reactions: rsm
dcburn said:
I just looked myself up and all the info is 20+years old.
Not that my SSN number or birthday changed...
Click to expand...


old data should not be kept; IIRC it's something like 7 - 10 years, depending on the data, for data retention required by law. after that retention period the data should be deleted, clearly it's not. not only that, the didn't encrypt the data!

I've had a few credit cards compromised and had to deal with removing fraudulent charges (due to fake card scanners at gas stations)...last time was a few years ago.

I've had several data breaches over the last several years; currently I have two active credit monitoring services provided free of charge from two different companies that had their data breached...these companies need to do better at protecting our data; they collect it and keep it longer than they should, and don't even bother encrypting it. I also have a credit monitoring service I pay for; but with all these breaches, it seems I always have a free one too!

Many company's IT have bad data security policies and implementations; some are slow to apply security patches, software updates, and upgrading their software... hackers are always looking for easy targets, and there always seem to be many;

ransomware has targeted many state and local government computer systems because they are often the least secure, and our taxes pay the ransom because of lax data security.

A few years ago, I recall one successful group of ransomware hackers that made so much money is such a short time, they announced they were ceasing operations - they had more money than the expected, and continuing increased their risk of being caught; they disappeared and were never caught; got away with millions, maybe 10s of millions, much of it from US state and local governments IIRC.
 
rsm said:
I have everything locked and monitored; I have 2 active monitor services due to two prior breaches - not including this breach, and one I've had on my own. You just have to monitor everything closely, regularly and consistently.

in this latest breach, they said none of the compromised data was encrypted - WTF?! The data includes SSN, phone, dob, addresses, email addresses, etc., it even has work addresses, etc. going back decades.
Click to expand...
What services do you suggest?
 
billsbigego said:
What services do you suggest?
Click to expand...
all of the credit bureaus offer a service; be sure which ever one you select monitors all three.. I forget which one I have, maybe Equifax?

another thing you can do, each of the three credit bureaus offer a free service to lock /unlock your credit information; go to each one, and lock your credit. anytime someone tries to open an account using your credit, you get an alert; until the credit is unlocked no new financial accounts can be opened.

not foolproof, but adds another layer of security.
 
rsm said:
old data should not be kept; IIRC it's something like 7 - 10 years, depending on the data, for data retention required by law. after that retention period the data should be deleted, clearly it's not. not only that, the didn't encrypt the data!

I've had a few credit cards compromised and had to deal with removing fraudulent charges (due to fake card scanners at gas stations)...last time was a few years ago.

I've had several data breaches over the last several years; currently I have two active credit monitoring services provided free of charge from two different companies that had their data breached...these companies need to do better at protecting our data; they collect it and keep it longer than they should, and don't even bother encrypting it. I also have a credit monitoring service I pay for; but with all these breaches, it seems I always have a free one too!

Many company's IT have bad data security policies and implementations; some are slow to apply security patches, software updates, and upgrading their software... hackers are always looking for easy targets, and there always seem to be many;

ransomware has targeted many state and local government computer systems because they are often the least secure, and our taxes pay the ransom because of lax data security.

A few years ago, I recall one successful group of ransomware hackers that made so much money is such a short time, they announced they were ceasing operations - they had more money than the expected, and continuing increased their risk of being caught; they disappeared and were never caught; got away with millions, maybe 10s of millions, much of it from US state and local governments IIRC.
Click to expand...
Yeah my place, LOL. The director is hesitant about having a "computer locks after X amount of minutes policy"
I had to fight to get MFA setup here. People are still using Joe123 as their password and I'm not kidding. It's a state job, so every little thing required 18 meetings. I'm basically silently quitting at this point.
 
rsm said:
all of the credit bureaus offer a service; be sure which ever one you select monitors all three.. I forget which one I have, maybe Equifax?

another thing you can do, each of the three credit bureaus offer a free service to lock /unlock your credit information; go to each one, and lock your credit. anytime someone tries to open an account using your credit, you get an alert; until the credit is unlocked no new financial accounts can be opened.

not foolproof, but adds another layer of security.
Click to expand...
Yeah my wife had to do that after 2 300 lb female black low life degenerate downtrodden destitute bottom feeding plankton eating fucking scum bags walked into her rehab facility and walked around and stole everyone's wallet and phones.

So basically they alert you if any new accounts have been opened and you have to approve?
 
billsbigego said:
Yeah my wife had to do that after 2 300 lb female black low life degenerate downtrodden destitute bottom feeding plankton eating fucking scum bags walked into her rehab facility and walked around and stole everyone's wallet and phones.

So basically they alert you if any new accounts have been opened and you have to approve?
Click to expand...
yes; you have to go to each credit bureau and unlock your credit. I did this recently for a termite treatment; they couldn't open the new account (for billing), until I manually unlocked my credit. so it works; at least most of the time. just another added layer of security + inconvenience. when you're done, remember to lock your credit again

they also send monthly notices, that nothing changed, one of your accounts increased/decreased balance, etc.
 
rsm said:
yes; you have to go to each credit bureau and unlock your credit. I did this recently for a termite treatment; they couldn't open the new account (for billing), until I manually unlocked my credit. so it works; at least most of the time. just another added layer of security + inconvenience. when you're done, remember to lock your credit again

they also send monthly notices, that nothing changed, one of your accounts increased/decreased balance, etc.
Click to expand...
Thanks, just did all 3
 
  • Like
Reactions: rsm
And here comes the fucking spam from all 3 of them :mad:
 
  • Sad
Reactions: rsm
You must log in or register to reply here.

Similar threads

shar-vell Dan
Musk has bought the 6 Trillion annually US Treasury for $295 million dRump campaign contribution. He has the keys. He has your Tax info, dob/ssn/addy.
2
Replies
24
Views
955
MadAsAHatter
MadAsAHatter
H
The US May Start Vaccinating Chickens Against Bird Flu
Replies
15
Views
580
rsm
rsm
H
Texas DPS: Over 443,000 criminal noncitizens booked in Texas jails
Replies
8
Views
396
lol
lol
Wizard of Ozz
DJT Makes Another Massive Trade Deal: EU
Replies
8
Views
435
Killcrop
Killcrop
ccn
MICROSOFT SUCKS
Replies
6
Views
695
LeroyBoy
LeroyBoy
Back
Top