An anonymous reader quotes security researcher Brian Krebs:TechCrunch has concluded that "the checker site, hosted by Equifax product TrustID, seems to be telling people at random they may have been affected by the data breach." One user reports that entering the same information twice produced two different answers . And ZDNet's security editor reports that even if you just enteror, " it says your data has been breached ." TechCrunch writes:Meanwhile, one web engineer claims the secret 10-digit "security freeze" PIN being issued by Equifax "is just a timestamp of when you made the freeze ."
Selfuntitled on September 10th, 2017 at 14:49 UTC »
Link to the actual post by Brian Krebbs https://krebsonsecurity.com/2017/09/equifax-breach-response-turns-dumpster-fire/
It's really bad - "Until just a couple of hours ago, the copy of WordPress installed at equifaxsecurity2017.com included a publicly accessible user database entry showing a user named “Edelman” was the first (and only?) user registered on the site."
Calsem on September 10th, 2017 at 14:48 UTC »
The original post is by krebs on security, a well-known security researcher:
https://krebsonsecurity.com/2017/09/equifax-breach-response-turns-dumpster-fire/
marktx on September 10th, 2017 at 13:49 UTC »
I'm waiting for equifaxsecurity2017.com to be hacked and turned into another harvesting tool for identity thieves..