What to Do In Response to the Equifax Data Breach
released on September 12, 2017
found in newsletter: September 2017
Equifax, a major national credit bureau, recently announced a massive data breach affecting 143 million consumers nationwide. Hackers stole highly sensitive information, including Social Security numbers, birth dates, addresses, and some driver’s license numbers. The company indicates that data on over 2 million Minnesota residents was compromised.
People can take the following additional steps to protect against identity theft as a result of Equifax’s data breach:
Steps To Take to Protect Yourself
Carefully monitor your credit reports and financial accounts for unauthorized activity and immediately alert your financial institution and local law enforcement of any suspicious activity. You can request a free copy of your credit report once each year by any of the following methods:
Log on to: www.AnnualCreditReport.com;
Call: (877) 322-8228; or
Write: Annual Credit Report Request Service at P.O. Box 105281, Atlanta, GA 30348-5281.
Please note that the credit bureaus all offer fee-based products where you can pay to get a credit report. There are also scam websites that pose as credit bureaus. You should avoid these websites and only order your free credit report by the above-described methods.
Consider placing a fraud alert on your credit reports, which requires creditors to contact you before opening any new accounts or increasing your credit limit. To do so, call any one of the three major credit bureaus at the following numbers:
Experian: (888) 397-3742;
TransUnion: (800) 680-7289; or
Equifax: (800) 525-6285.
The fraud alert will remain in your credit file for at least 90 days.
Consider placing a security “freeze” on your credit reports by contacting each of the three major credit bureaus. This is supposed to prevent the release of any information from your credit report without your written authorization, which makes it more difficult for identity thieves to open new accounts (but also harder for you to quickly open a new account). For more information on how to place a credit freeze, you may download our brochure, entitled Protect Yourself from Identity Theft.
Identity theft victims can freeze their credit reports without charge, and non-victims can freeze their credit reports for $5. Equifax has agreed to waive its own fees for placing security freezes on its own credit reports (and provide refunds to consumers who paid to place a freeze on or after September 7, 2017) through November 21, 2017.
If you suspect someone is misusing your Social Security number (“SSN”), report the problem to the Social Security Administration at (800) 772-1213. If someone uses your SSN to commit fraud, you should immediately report the fraud to the Social Security Fraud Hotline at (800) 269-0271, and the Internal Revenue Service’s Identity Protection Specialized Unit at (800) 908-4490.
Additional Information Through Equifax
Equifax has a website, www.equifaxsecurity2017.com, which provides additional information and resources about the data breach. At this website, you may check if your personal information was exposed as part of the data breach. To do so, you must submit your last name and the last six digits of your Social Security number.
Equifax is offering United States residents one year of free credit monitoring and identity theft protection services through its product, “TrustedID Premier.” Currently, people have until November 21, 2017, to enroll. You can enroll by completing the enrollment process at www.equifaxsecurity2017.com. Equifax has indicated that:
it will not ask for your credit card information during the enrollment process;
it will not automatically enroll you in additional services at the conclusion of the free one-year period; and
people who enroll do not waive their right to sue Equifax for the data breach.
Please note that Equifax continues to sell fee-based monitoring products on its website, but you do not have to pay a fee to sign up for free credit monitoring through www.equifaxsecurity2017.com.
Equifax has indicated that it will not email, text, or call Minnesota residents to notify them that their personal information was exposed by its data breach. If you receive emails, texts, or calls from any person or company claiming to be Equifax or anyone else related to the data breach, they are probably an imposter scam. You should not open or respond to such communications. Communicating with such scam artists, even to ask them to stop contacting you, may only encourage them to continue contacting you.
For more information, the Minnesota Attorney General’s Office has publications entitled:
What to Do When Your Personal Information is Breached;
Protect Yourself from Identity Theft; and
Guarding Your Privacy.
Original Press Release