Credit agency Equifax has info of 143 million stolen

Credit agency giant Equifax said on Thursday that a breach of its cybersecurity system may have affected 143 million consumers in the United States as well as some data for British and Canadian residents.

The company, which safeguards financial data for consumers applying for credit, said in a statement it learned of the breach on July 29 and ‘acted immediately’ with the assistance of an independent cybersecurity firm to assess the impact.

‘Criminals exploited a US website application vulnerability to gain access to certain files,’ the statement said. 

Consumer credit agency Equifax says that 143 million consumers may have been affected by massive data breach 

To put that in perspective, the breach affected well over a third of the population in America, which stood at 324 million as of Jan. 1, 2017, according to the US Census Bureau. 

Shares of the company’s stock dropped more than five per cent during after-hours trading, CNBC noted.  

The data collected by the cyber-thieves contained a trove private information including names, birth dates, Social Security numbers, addresses and driver’s licenses of consumers. 

The company said that more than 200,000 credit card numbers were illegally obtained, in addition to ‘certain dispute documents with personal identifying information for approximately 182,000 US consumers.’ 

‘This is clearly a disappointing event for our company, and one that strikes at the heart of who we are and what we do,’ said company chairman and chief executive Richard Smith.

‘I apologize to consumers and our business customers for the concern and frustration this causes. We pride ourselves on being a leader in managing and protecting data, and we are conducting a thorough review of our overall security operations.’  

Data collected in the breach included names, Social Security numbers and driver's licenses

Data collected in the breach included names, Social Security numbers and driver’s licenses

Equifax said it would work with British and Canadian regulators to determine appropriate next steps for customers affected in those countries, but added that it ‘found no evidence that personal information of consumers in any other country has been impacted.’ 

Equifax said it had established a website to enable consumers to determine if they are affected and would be offering free credit monitoring and identity theft protection to customers.

The company is the latest to announce a major breach. Yahoo last year disclosed two separate cyber attacks which affected as many as one billion accounts.

More than 400 million accounts were affected by a breach disclosed last year at the hookup site Adult Friend Finder, and other firms affected in recent years included Heartland Payment Systems and retail giant Target.

 

Read more at DailyMail.co.uk