I’m reading the class action suit against @Equifax and this is the most cybersecurity negligence I’ve seen in my career.
They shouldn’t be trusted to plan a BIRTHDAY PARTY, much less control all our consumer credit information.
Let’s look through the lawsuit.
It was “admin”
And the password?
Also “admin”
They knew it was a “surefire way to get hacked,” and did nothing. These people should be in jail because this is criminal negligence.
This would be like your bank storing your money on their porch.
In a really bad neighborhood. With a sign blinking “free money here!”
Use the last 4 digits of their SSN, and the four digits of their birth year.
And mind bogglingly, they did not bother to AUTHENTICATE USERS - meaning you didn’t even need a password in many instances. Just poof! It’s available.
Send me to Congress, and I will make sure people this reckless with your data get sued out of existence. How no one went to jail for this is beyond me.