Equifax Issues Second Breach Estimate Correction, Says 15.2M British Affected

Equifax says 693000 UK residents affected by hack

Equifax says 693000 UK residents affected by hack

Equifax says the failure that led to United Kingdom data being stored in the USA was corrected in 2016, suggesting that the company hadn't deleted the United Kingdom data by the time the breach occurred in May.

Last night the credit reference agency said that 15.2 million records pertaining to Britons were stolen, affecting 693,665 individual customers.

Initially, the company said that information on potentially 400,000 United Kingdom consumers had been accessed.

The data includes partial credit card details, phone numbers and drivers' licence numbers.

Equifax first disclosed the breach on September 7, revealing that hackers exploited a vulnerability in a USA website application. Almost 15,000 contained sensitive information, such as passwords and partial credit card information, and almost 30,000 had driver's license numbers compromised, Equifax said.

For the second time since it fessed up to suffering a data breach last month, Equifax has issued a correction, acknowledging today in a press release that hackers stole details on over 15.2 million United Kingdom citizens.

The survey, sponsored by CyberScout, also found that more than 49 percent of respondents were confused about what to do after receiving a breach notification.

The company said it has now started notifying impacted United Kingdom consumers.

"It has been regrettable that we have not been able to contact consumers who may have been impacted until now, but it would not have been appropriate for us to do so until the full facts of this complex attack were known, and the full forensics investigation was completed", he said.

Still, less than half of respondents took basic steps to protect themselves following the breach, such as changing their passwords (44.3 percent), requesting a credit report (42.5 percent), or signing up for a credit monitoring service (20.9 percent).

"NCSC advises that passwords are not re-used on any accounts if you have been told by Equifax that any portion of your membership details have been accessed". Since then, the company has parted ways with its chief executive officer, chief information officer and chief security officer.

Recommended News

We are pleased to provide this opportunity to share information, experiences and observations about what's in the news.
Some of the comments may be reprinted elsewhere in the site or in the newspaper.
Thank you for taking the time to offer your thoughts.