Another batch of millions exposed to Equifax hack
2.4 million Americans added to the list of people whose information was stolen from Equifax last year.
In addition to the more than 145 million people whose names and Social Security numbers were stolen during a security breach at Equifix last year, the credit reporting company just added 2.4 million names and driver’s license information to the list of stolen data. Affected individuals should soon be receiving a notice from Equifax and an offer of identity theft protection and credit file monitoring services at no cost.
The new names were not part of the initial list from September 2017 or the first addition of 2.5 million names in October because their Social Security numbers were not stolen. Instead, Equifax and its forensics experts discovered that these people’s driver’s license numbers were taken. For most of the new victims, however, the hackers did not get their home addresses or their respective driver’s license states, dates of issuance or expiration dates.
“This is not about newly discovered stolen data,” said Equifax’s interim CEO Paulino do Rego Barros, Jr. “It’s about sifting through the previously identified stolen data, analyzing other information in our databases that was not taken by the attackers and making connections that enabled us to identify additional individuals.”
So far, Equifax has found no evidence that its core consumer employment and income or commercial credit reporting databases were accessed as part of the cyberattack.
Nevertheless, the scope of the hack has prompted the company to offer free identity theft protection and credit file monitoring services to all U.S. consumers regardless of whether or not they were impacted, as well as to provide its free-for-life Lock & Alert service to turn on and off protection of credit reports.