Equifax’ Massive Data Leak and You

If you haven’t been busy this week choking on smoke and running from forest fires in the western US, recovering from flooding in Texas, preparing for one of the strongest Atlantic hurricanes ever in Florida and the Caribbean, or simply fighting the good fight, you might have heard about the Equifax data leak – Equifax, a consumer credit reporting company, admitted that their database was breached and information on roughly 143 million US citizens (and some in the UK and Europe).

Equifax collects data about you and sells it to third parties. They’re an integral part of the credit infrastructure both in the US and worldwide. When you apply for a student or car loan, a mortgage or rent an apartment, car or even just tools, the organization you’re applying to will very likely check you out via Equifax. They’re one of the companies that calculates the “credit score” that determines how much will be extended to you. They collect and store the information that’s used to determine that you are you, and to decide whether to extend credit to you. And they just leaked the data they had on more than half the adults in the US.

While it’s possible that your business may be Equifax’ customer, you as an individual are not – you’re their asset. You may occasionally wrestle with them to try to correct information about you that they use to advise the business world on whether to extend credit to you, but you have no say and no control over what they know about you.

And now there’s a very good chance that they’ve leaked what they know about you – social security number, address, phone number, possibly credit card or bank account information – to thieves who’ll sell it to the highest, or possibly, any bidder. They’ve taken five weeks to let us all know about this, and they’ve set up a half-assed, insecure site to collect more information from you before they’ll let you know whether they did leak information about you (assuming they even know).

Ars Technica has two fine writeups about the situation:

https://arstechnica.com/information-technology/2017/09/equifax-website-hack-exposes-data-for-143-million-us-consumers/

https://arstechnica.com/information-technology/2017/09/why-the-equifax-breach-is-very-possibly-the-worst-leak-of-personal-info-ever/

How do you protect yourself, especially given that you cannot prevent Equifax from collecting information about you, and even if you did, you would then be unable to use credit?

First, some of this information has been out in the wild before. There’s a good chance your address and even your social security number has already been compromised.

For each credit card, bank or investment account that you use, be sure to enable any extra security that they offer – second factor will help a lot, especially if it uses an app rather than SMS (text messages), though second factor SMS is better than no second factor.

Update your personal security questions to use strong passwords (like “bzkev8Yq4zcHC%8jTz”) as answers rather than real answers (like “pizza”, which is easily guessable).

If you’ve been thinking about closing an account or switching banks, now might be a great time to do that.

Keep an eye on your charges.

And keep an eye on your credit score. The information that’s been stolen not only enables crackers to get into your existing accounts, it enables them to open new accounts in your name.

Consider signing up for a credit protection service. Equifax’ crappy web site will offer you a year of free service. It’s likely this is better than not having a year of service.

The impact of this breach may go on for years – the best way to protect yourself is to stay vigilant and monitor all your financial information regularly.

Wired has more suggestions as well.

Machine Learning Baby Photos

I’m lucky. I was here a long time before Instagram, so all the photos of me as a child have vanished into time. Or been lost in someone’s attic. Today, however, there are plenty of babies whose histories are slavishly recorded online by their parents, and I often wonder how these kids, when they become teenagers and adults, are going to feel about this indelible photographic history, which includes a high proportion of diaper pooping.

That’s one thing I love about the computer industry; its technology is still in its infancy, the baby photo stage. Okay, maybe it’s toddling. But the point is that while hardware and software have both evolved incredibly over the decades I’ve been in the industry, there’s still so much potential for growth in both areas.

Continue reading

Protect Your Domain Registrations and Privacy

When you register a domain name, you may expose personal information about yourself: your address, phone number email address. Let’s take a look at domain name registration and privacy.

I was a domain name hoarder: uvjobs.com… uvfood.com… uvweather.com… thermonster.com… pdxlead.org… wattsense.com… shouldisellitnow.com… buyr.biz… trackr.biz… recovr.org… wstlk.us… wowstalker.com… 23meals.com… stuffthatshouldnthavesugarinit.com… unwishlist.com… thingsijustlearned.com… These are just a few from the collection.

Whenever I bought domains like this I also picked up all the .org and .net versions. Because while you think that the .org/.net forms of your domain names don’t matter, they do. If, for example, you’re a presidential candidate, it might be embarrassing for someone who’s opposed to your policies to get ahold of them. And it’s definitely embarrassing to let the .com version of your domain slip through your fingers, especially if it ends up in the hands of Donald Trump and he redirects all your traffic to his site.

Continue reading

How I Learned To Stop Worrying And Love Apple Pay

You get a call from an unknown number. You ignore it. But they call again, and again, and again, and sometimes they leave you a silent voicemail. Spooked, you google the phone number. There are several reports saying the callers are credit card scammers, but there are also comments saying that the callers really are your credit card company.

Unsure, you decide to check your credit card statement online. You see strange charges: a subscription to a Latvian gaming site, a deluxe membership on a porn site, five subscriptions to Christian Mingle. And if you’re really unlucky, a motorhome.

If you actually use your credit card, a variant of the above scenario has likely happened to you. Possibly several times. It occurs because a business you used the card with didn’t protect their data and got broken into, and in the process, your personal details and card information were stolen.

Continue reading

Publishing to WordPress from Google Docs

Google Docs is great for collaboratively editing. You can share files, make comments, have conversations around specific areas, and make suggestions, all in real time. But it’s not so great for posting to WordPress. Yes, you can just copy and paste a post from Docs into WordPress, but in the process, you lose images and the formatting and spacing goes all weird. It’s definitely not plug and play; there’s a lot more fuss than I’d like.

I recently changed my workflow to collaboratively write in Google Docs and then publish in WordPress. I tried three different Google Docs add-ons, all of which claimed that they’d transfer articles to WordPress: none worked. So naturally, I was happy to see that the WordPress team have picked up on the problem and offered a solution: I can now draft using Docs and port my work right into WordPress. This means that I can spend more time writing and less time tinkering (procrastinating) with image and format settings.

Continue reading

%d bloggers like this:
var _gaq = _gaq || []; var pluginUrl = '//www.google-analytics.com/plugins/ga/inpage_linkid.js'; _gaq.push(['_require', 'inpage_linkid', pluginUrl]); _gaq.push(['_setAccount', 'UA-239812-12']); _gaq.push(['_trackPageview']); (function() { var ga = document.createElement('script'); ga.type = 'text/javascript'; ga.async = true; ga.src = ('https:' == document.location.protocol ? 'https://' : 'http://') + 'stats.g.doubleclick.net/dc.js'; var s = document.getElementsByTagName('script')[0]; s.parentNode.insertBefore(ga, s); })();