The Soapbox

Joined: 01/04/2001 Posts: 27048
Likes: 34329

What's this?

Not enough of a cybersecurity wonk to know how negligent they were.

I gather they did identify a weakness after the breach.

My theory has always been there ain't no such thing as hackproof. If you are a tempting enough target, you'll be hacked.

That belief almost cost me my job. In the investment industry your personal trading is almost always very heavily scrutinized. In my firm, its all but forbidden. But you can have non-discretionary accounts. I have one, and our compliance team decided that collecting paper statements is too onerous. So they forced all employees to electronically link their brokerage accounts, if any, to our cloud-based compliance system. For months (I think it was even years), I refused, as I got presentation after presentation about the state of the art security protocols, which reduce odds of hacking to, you know, a really low number. 1 in 10 mil hacking attempts. Or a 100 mil or a bil.

I don't remember because it didn't matter to me - how long will it take a high value system to receive 1 bil hacking attempts? A month? A week? An afternoon?

I found a decent compromise with my firm. But I have to say, if you are a system with lots of sensitive info that people want, you'll be hacked. It's a question of when, not if IMO. I don't think it matters how state of the art your security protocols are.

Which does suck. I'm sure I am one of the 100s of millions of hacking victims here, as are probably most of us soapboxers. I don't know that I'm as angry as you.

I really just wish all the runaway proponents of things like self driving cars would pay closer attention to this reality.

(In response to this post by Faz d. Hoo)

Posted: 09/08/2017 at 09:48AM

PREV NEXT REPLY

Insert a Link

Enter the title of the link here:

Enter the full web address of the link here -- include the "http://" part:

Current Thread:

Thanks Equifax -- Faz d. Hoo 09/08/2017 09:14AM

I'm gonna Freeze my Credit, call my banks/Credit cards -- ConnHoo 09/08/2017 9:44PM

This site will give instructions for checking to see if you were impacted -- 111Balz 09/08/2017 11:25AM

LOL... -- hoothat 09/10/2017 01:36AM

Can't be trusted but then we know that now -- bballbill 09/08/2017 6:41PM

Anybody who checks their status through that site waives -- wahoo138 09/08/2017 12:09PM

only if you sign up for the monitoring service ** -- 111Balz 09/08/2017 12:12PM

It signs you up automatically -- wahoo138 09/08/2017 12:15PM

Not me ** -- 111Balz 09/08/2017 12:16PM

Probably because you didn't come back as affected -- wahoo138 09/08/2017 12:18PM

Unless you explicitly agree to something, no way would that waiver be -- 111Balz 09/08/2017 12:24PM

You still have to affirmatively sign up and agree to their terms and -- KCHoo 09/08/2017 12:19PM

Just checked again. It says I'm probably effected and has a button -- wahoo138 09/08/2017 12:59PM

No way it would be effective if you don't have the customer click -- KCHoo 09/08/2017 1:04PM

It explicitly said I will not receive any more messages about this and if -- wahoo138 09/08/2017 1:09PM

The message read as if I was already enrolled -- wahoo138 09/08/2017 12:48PM

Thats only if you sign up for the protection and it is questionable -- KCHoo 09/08/2017 12:10PM

So what is the best recourse? I and the better half -- walkthecorner 09/08/2017 12:46PM

My plan is to get the free credit reports -- maybe one every 4 months -- KCHoo 09/08/2017 12:54PM

I wonder about that. -- hoolstoptheheels 09/08/2017 12:30PM

The circuits are split on whether you have to show some actual identity -- KCHoo 09/08/2017 12:43PM

Yep. That's generally how the law catches up to reality. ** -- hoolstoptheheels 09/08/2017 1:39PM

I would be okay with making an example out of them -- Faz d. Hoo 09/08/2017 12:16PM

Wow, pretty lucky. Most everyone I know was affected. ** -- PalmyraHoo 09/08/2017 11:57AM

I was. Couldn't resist checking. ** -- KCHoo 09/08/2017 12:00PM

Anyone considering a credit freeze? -- Notorious KOM 09/08/2017 10:51AM

Just checked...very nice that they (Equifax) wants a -- hoobedda 09/08/2017 11:15AM

Welp...might be time for Life-Lock (or one of those ID protection firms) ** -- Tuckahokie 09/08/2017 09:55AM

Heard bad things about lifelock -- HokieDan95 09/08/2017 10:21AM

I was urged to use them after a VA breach -- PalmyraHoo 09/08/2017 12:01PM

That would seem like a requirement ** -- wahoo138 09/08/2017 1:24PM

2008? ** -- Faz d. Hoo 09/08/2017 11:18AM

Lucky me, I'm already in my free year -- Beerman 09/08/2017 10:13AM

Yep- have had "free" enrollments for several -- walkthecorner 09/08/2017 10:15AM

They are offering a free one year service. Google -- walkthecorner 09/08/2017 10:03AM

I saw a report that there are security concerns in checking ** -- KCHoo 09/08/2017 10:05AM

That was going to be my joke response ** -- WahooMatt05 09/08/2017 10:45AM

Well fudge me since I checked yesterday. ** -- walkthecorner 09/08/2017 10:06AM

Don't think it's a huge deal. probably will just get spam -- KCHoo 09/08/2017 10:11AM

Not enough of a cybersecurity wonk to know how negligent they were. -- hoolstoptheheels 09/08/2017 09:48AM

Credit bureau data too. That's no joke. ** -- WahooRQ 09/08/2017 09:43AM

I want an opt out law with these companies. Fat chance in corporate America ** -- hokeyhokie 09/08/2017 09:43AM

Call me crazy -- Fuzzy Dunlop 09/08/2017 10:41AM

If you opt out then you wouldn't be able to get credit -- Faz d. Hoo 09/08/2017 09:45AM

Ummm... how did your parents buy their first house? ** -- 81_Hokie 09/08/2017 12:33PM

Irrelevant. Credit is much more sophisticated now. -- Faz d. Hoo 09/08/2017 12:42PM

Why is that relevant? -- hoolstoptheheels 09/08/2017 12:41PM

Should be my choice. I'll bet banks will still want my money ** -- hokeyhokie 09/08/2017 09:47AM

Sure. The question is, will you need any of their money. If so -- 111Balz 09/08/2017 10:20AM

Yes, banks will take your money. So what? -- Faz d. Hoo 09/08/2017 09:51AM

If people start opting out, the system will change because it has to ** -- hokeyhokie 09/08/2017 09:53AM

It's a pipe dream, my friend. Not that there's anything wrong with that. -- Shenhoo 09/08/2017 10:08AM

To what? Life before credit ratings? Not likely. -- hoolstoptheheels 09/08/2017 09:59AM

These firms provide a vital service -- Fuzzy Dunlop 09/08/2017 11:06AM

Sure. That's their primary purpose. -- hoolstoptheheels 09/08/2017 11:19AM

Everyone should be treated equally. -- BocaHoo91 09/08/2017 11:51AM

There are hundreds of millions of people in the system -- Faz d. Hoo 09/08/2017 09:55AM

Don't bet too much. They only lend out so many. -- hoolstoptheheels 09/08/2017 09:50AM

Yes - I suppose I will enroll the wife and I in their -- walkthecorner 09/08/2017 09:27AM

3 managers dumped $1.8 million worth of stock before it went public ** -- HokieDan95 09/08/2017 09:18AM

The party line is laughable -- Beerman 09/08/2017 09:58AM

Ooh. That's a serious no-no. ** -- hoolstoptheheels 09/08/2017 09:51AM

Not just a manager, the CFO -- WahooMatt05 09/08/2017 09:50AM

This story is going to have a long tail. Those managers are just part of it ** -- Faz d. Hoo 09/08/2017 09:23AM