You can do all three online. I did one online and the others by phone with an automated attendant (believe it or not) for one and another with a live person. But I could just as easily have done them all online.
Last edited:
Anthem Hacked: 80 million customers
- Thread starter sheehs1
- Start date
You can do all three online. I did one online and the others by phone with an automated attendant (believe it or not) for one and another with a live person. But I could just as easily have done them all online.
Corporate ORphan
Recycles dryer sheets
- Joined
- Sep 21, 2010
- Messages
- 250
I tried to do a freeze this morning online with Equifax. It took all my info including my credit card and then told me to try back later without giving me a PIN or confirmation number. When I tried back later it told me I had a freeze, did I want to lift it? Now I have been on hold for 30 minutes waiting for a representative (took me 5 minutes to get a phone number for the right live person!) Beware when doing this online. I won't do it again. Next time will be by phone.
scrabbler1
Give me a museum and I'll fill it. (Picasso) Give me a forum ...
- Joined
- Nov 20, 2009
- Messages
- 6,698
I have had different experiences with the 3 agencies.
With Equifax, I tried doing the freeze on line yesterday (Thursday) and just as it was processing my info, I got an error message telling me there was a "problem" and the freeze didn't take. But when I tried to do it again today, the only choices I got were the ones to temporarily or permanently lift a freeze, not place a freeze. This suggests that the freeze I attempted actually worked despite the error message. But when I tried to call them I got put on hold for way too long (anything over 6 or 7 minutes I hang up). I could wait a few days to see if my PIN arrives but I'd rather call first to make sure the freeze is in effect now.
Experian went fine on line. I got the security freeze and printed out the confirmation page. [Sheehs1, was this the one you did on line?]
Transunion I had trouble doing on line. It kept asking me to reset my password but when I tried that it kept asking me a security question I did not set up (name of first pet; I don't own a pet). Then, I tried registering an new account and was able to set one up with a different security question. I got passed that okay but the online processing got fouled up like Equifax's. When I tried it again this morning, I hit those same hurdles again but oddly the security question remained the one about the pet, not the one I chose instead. I can't register a new account because it thinks I have one already. And I can't reset my password because of the dang security question. I tried the phone option and that went just fine - no security question and the whole thing took 2 minutes tops without having to wait for a live person. I'll get some info packet in a few days or so. [Sheehs1, was this the one you did over the phone with an automated attendant, too?]
With Equifax, I tried doing the freeze on line yesterday (Thursday) and just as it was processing my info, I got an error message telling me there was a "problem" and the freeze didn't take. But when I tried to do it again today, the only choices I got were the ones to temporarily or permanently lift a freeze, not place a freeze. This suggests that the freeze I attempted actually worked despite the error message. But when I tried to call them I got put on hold for way too long (anything over 6 or 7 minutes I hang up). I could wait a few days to see if my PIN arrives but I'd rather call first to make sure the freeze is in effect now.
Experian went fine on line. I got the security freeze and printed out the confirmation page. [Sheehs1, was this the one you did on line?]
Transunion I had trouble doing on line. It kept asking me to reset my password but when I tried that it kept asking me a security question I did not set up (name of first pet; I don't own a pet). Then, I tried registering an new account and was able to set one up with a different security question. I got passed that okay but the online processing got fouled up like Equifax's. When I tried it again this morning, I hit those same hurdles again but oddly the security question remained the one about the pet, not the one I chose instead. I can't register a new account because it thinks I have one already. And I can't reset my password because of the dang security question. I tried the phone option and that went just fine - no security question and the whole thing took 2 minutes tops without having to wait for a live person. I'll get some info packet in a few days or so. [Sheehs1, was this the one you did over the phone with an automated attendant, too?]
Scrabbler:
Experian IS the one I did online. I did Equifax and Transunion by phone.
i did them in the order they were listed in the link and since I had never done it before, with Equifax being the first one in the list, I called and placed it by phone. Having more confidence, I did Experian online. I didn't particularly like Transunions website so I also did that one by phone. I think it was going to make me set up an account or something….so instead…I simply called.
The phone numbers I got off their websites...if it helps anyone are:
Equifax: 1-800-685-5000 (automate attendant and went smoothly)
Experian: 1-888-397-3742 ( I did this one online and it worked perfectly)
Transunion: 1-888-909-8872 (live person)
I wonder for those having problems online if their systems are bogged down a bit. Last night the media was telling folks to put a credit freeze on their accounts as the data stolen was the data necessary to steal identities.
The Wall STreet Journal and I'm sure others had a bit more detail about the breach, stating the system administrator had noticed a query running he did not initiate, called in the investigators and tracked "the data" to an off site storage facility. The investigators froze the data base there. What they can't know is if that was all the data or if it had been copied and sent somewhere else. The nightly news also said there was already evidence of ANTHEM records being sold and showed a webpage where it was listed. I'm sure perhaps most of you have seen the same info.
Experian IS the one I did online. I did Equifax and Transunion by phone.
i did them in the order they were listed in the link and since I had never done it before, with Equifax being the first one in the list, I called and placed it by phone. Having more confidence, I did Experian online. I didn't particularly like Transunions website so I also did that one by phone. I think it was going to make me set up an account or something….so instead…I simply called.
The phone numbers I got off their websites...if it helps anyone are:
Equifax: 1-800-685-5000 (automate attendant and went smoothly)
Experian: 1-888-397-3742 ( I did this one online and it worked perfectly)
Transunion: 1-888-909-8872 (live person)
I wonder for those having problems online if their systems are bogged down a bit. Last night the media was telling folks to put a credit freeze on their accounts as the data stolen was the data necessary to steal identities.
The Wall STreet Journal and I'm sure others had a bit more detail about the breach, stating the system administrator had noticed a query running he did not initiate, called in the investigators and tracked "the data" to an off site storage facility. The investigators froze the data base there. What they can't know is if that was all the data or if it had been copied and sent somewhere else. The nightly news also said there was already evidence of ANTHEM records being sold and showed a webpage where it was listed. I'm sure perhaps most of you have seen the same info.
Last edited by a moderator:
scrabbler1
Give me a museum and I'll fill it. (Picasso) Give me a forum ...
- Joined
- Nov 20, 2009
- Messages
- 6,698
Sheehs, thanks for your answers. With Equifax, I wasn't using the phone # your posted but a different one. Yours worked better because I didn't have to wait for a live person. Once I navigated through their phone menu and got to the Freeze options, it turned out that I did have a freeze on the account already so I simply hung up.
Same for me. I verified all the info, put in my payment info, and then the next screen said something like "we couldn't process your request, try again later".
I called and was on hold for about 15 minutes and the lady that finally answered confirmed who I was, and said the freeze took effect and they'd mail out the PIN or confirmation number, and it should arrive in a few days.
One down, two to go...
truenorth418
Full time employment: Posting here.
Froze my Experian report on their website with no problem.
Equifax site was slow and completed the process without giving me my personal ID number, so I had to complete that one over the phone (which required answering a bunch of questions for their customer service rep). They will send me my personal ID number in the mail.
TransUnion freeze page would not even open for me. Maybe they are overwhelmed with requests due to the Anthem theft. I called their toll free line and completed the freeze process on the phone in less than 60 seconds.
Hopefully that will take care of unauthorized credit cards and such.
On the other hand, given the frequency and breadth of these breaches, I am becoming more concerned about someone hacking into the sites of Schwab, Vanguard, Fidelity, etc and literally emptying peoples' accounts. I don't see how multi-factor authentication or brokers' "guarantees" would prevent havoc of that nature.
Anthem CEO's announcement said: "We have state-of-the-art information security systems to protect your data." If true, then state of the art isn't good enough and no one's data is safe anywhere.
Equifax site was slow and completed the process without giving me my personal ID number, so I had to complete that one over the phone (which required answering a bunch of questions for their customer service rep). They will send me my personal ID number in the mail.
TransUnion freeze page would not even open for me. Maybe they are overwhelmed with requests due to the Anthem theft. I called their toll free line and completed the freeze process on the phone in less than 60 seconds.
Hopefully that will take care of unauthorized credit cards and such.
On the other hand, given the frequency and breadth of these breaches, I am becoming more concerned about someone hacking into the sites of Schwab, Vanguard, Fidelity, etc and literally emptying peoples' accounts. I don't see how multi-factor authentication or brokers' "guarantees" would prevent havoc of that nature.
Anthem CEO's announcement said: "We have state-of-the-art information security systems to protect your data." If true, then state of the art isn't good enough and no one's data is safe anywhere.
explanade
Give me a museum and I'll fill it. (Picasso) Give me a forum ...
- Joined
- May 10, 2008
- Messages
- 7,439
Had no problems on all 3 sites yesterday.
Problem is that when they use the data, they have to decrypt it so a lot of the time it's exposed on their network.
I don't know if there's a way to get credit or get insurance or bank accounts with your social security number.
We really need a way to tokenize our main form of ID so that instead of giving your social security number to parties who can lose it, we give a temporary number that is linked to your social security which only you know about and can revoke.
That is what Apple Pay does, so you don't give out your actual credit card number.
Problem is that when they use the data, they have to decrypt it so a lot of the time it's exposed on their network.
I don't know if there's a way to get credit or get insurance or bank accounts with your social security number.
We really need a way to tokenize our main form of ID so that instead of giving your social security number to parties who can lose it, we give a temporary number that is linked to your social security which only you know about and can revoke.
That is what Apple Pay does, so you don't give out your actual credit card number.
MRG
Give me a museum and I'll fill it. (Picasso) Give me a forum ...
- Joined
- Apr 9, 2013
- Messages
- 11,078
It's just a bit(s) somewhere in many TBs of data. All you have to do is get through the security layers and turn all the correct bit(s) in the right direction. Should be easy.
Don't forget to clean up all the recovery logs/audit to cover up that change.I wondered the same thing GrayHare. The only thing stopping them is the PIN number because they have all the "other" data.
Experian also suffered a data breach in Nov 2013. Wonder if they got PIN numbers? I need to read up on that breach.
I guess nothing is fail safe at the moment. Perhaps just another level of some sort of protection. It should keep the person at the doctor's office from stealing your identity.
Don't know about serious hackers.
Exclusive: U.S. states probing security breach at Experian unit | Reuters
Bikerdude
Thinks s/he gets paid by the post
- Joined
- Jul 4, 2006
- Messages
- 1,901
+1. IMO because it was SS numbers that were hacked they should provide identity protection for life.
eytonxav
Give me a museum and I'll fill it. (Picasso) Give me a forum ...
And they should do that for all family members since they had insured DW, DS and DD as well.
more scammers have started to pile on....some emails are going around with links/etc for id protection. these are fake so be careful. you will be offered id protection and "officially" notified by letter.
the others are right, freezing is your best option.
the others are right, freezing is your best option.
Not a fan of more government regulation, but this is getting out of hand.
I bet if there was an automatic financial penalty for not securing confidential customer data, and letting it get stolen via hacking, these institutions would put in sophisticated measures to prevent it.
Right now, there's just not enough penalty.
Fine them $100 per person (which doesn't sound like a lot) whose data was hacked, not subject to appeal. Anthem has 80 million peoples' data stolen because they didn't secure it well enough? Automatic $8 billion fine, not negotiable.
Draconian? Yep. But I bet these companies would do everything they could to stop it then.
Put the screws to these idiots and make them bleed cash, and they'll find a way to stop it.
I bet if there was an automatic financial penalty for not securing confidential customer data, and letting it get stolen via hacking, these institutions would put in sophisticated measures to prevent it.
Right now, there's just not enough penalty.
Fine them $100 per person (which doesn't sound like a lot) whose data was hacked, not subject to appeal. Anthem has 80 million peoples' data stolen because they didn't secure it well enough? Automatic $8 billion fine, not negotiable.
Draconian? Yep. But I bet these companies would do everything they could to stop it then.
Put the screws to these idiots and make them bleed cash, and they'll find a way to stop it.
I'm in NC, and it's free to freeze/unfreeze. Did both me and DW on line several years ago and it generated very strong passwords. Have had to unfreeze a couple of times, can do online and for specific period of time. If you are applying for something, ask who they use of the three so you only unfreeze the one (in most cases).
Given the incredible misery I've heard I theft causes, I cannot understand why everyone doesn't avail themselves of this protection. Even if it cost $10 each, I think it's worth it. At this point in life I rarely need to lift, only when opened new cc accounts to get a good deal. I'm sure it's not fool proof (loved that my first boss (engineering) said we can't make anything fool proof, only fool resistant) but it seems hazardous to not do this given how many places our data is. This, and checking cc activity every few days, gives me a reasonable measure of confidence. But yeah, bad things can still happen.
Given the incredible misery I've heard I theft causes, I cannot understand why everyone doesn't avail themselves of this protection. Even if it cost $10 each, I think it's worth it. At this point in life I rarely need to lift, only when opened new cc accounts to get a good deal. I'm sure it's not fool proof (loved that my first boss (engineering) said we can't make anything fool proof, only fool resistant) but it seems hazardous to not do this given how many places our data is. This, and checking cc activity every few days, gives me a reasonable measure of confidence. But yeah, bad things can still happen.
We were successful the first time online with Experian. DH was then successful with the other two, but had a 30 minute wait on the phone for one of the others. I tried to do Equifax online but after paying and entering all my info I got the dreaded-sorry, can't help you at this time. But then I saw the 10 dollar charge went through to my AMEX, so I suspected the freeze took. I called their automated system, and it confirmed that "the freeze is on" which made me happy. Had the same problem online with TransUnion, and called their automated system, but it didn't have any option to check to see if the freeze took. My AMEX was charged, so I suspect it took, but don't have confirmation-their online system gave me the "sorry can't help you right now" message-what a pain!
audreyh1
Give me a museum and I'll fill it. (Picasso) Give me a forum ...
Hmmmm - just in time to file a bunch of fraudulent returns!
eytonxav
Give me a museum and I'll fill it. (Picasso) Give me a forum ...
+1 had the same experience with Experian and Equinox, but have not completed the TransUnion freeze yet. Also had my tax return accepted by IRS. I don't have a state return being in Texas. but hearing about TurboTax suspending e-filing of state returns due to fraud. I guess I need to also do likewise for DW
explanade
Give me a museum and I'll fill it. (Picasso) Give me a forum ...
- Joined
- May 10, 2008
- Messages
- 7,439
Unfortunately, they'd pass the cost of those fines to us in the form of higher premiums.
There has to be a better way to get insurance or get credit (which could be getting loans, credit cards, getting a cell phone plan) without using our social security numbers, which are a pain to replace.
What is the difference between credit monitoring and ID protection? Monitoring tells you when your social security number and name are used to apply for credit but does ID protection prevent fraudulent use of your ID somehow?
There has to be a better way to get insurance or get credit (which could be getting loans, credit cards, getting a cell phone plan) without using our social security numbers, which are a pain to replace.
What is the difference between credit monitoring and ID protection? Monitoring tells you when your social security number and name are used to apply for credit but does ID protection prevent fraudulent use of your ID somehow?
Bikerdude
Thinks s/he gets paid by the post
- Joined
- Jul 4, 2006
- Messages
- 1,901
Funny (or not) you should say that. Here in CT there have been a large number of state tax returns (requesting refunds) filed recently. The state has put a hold on refunds until they can verify they are going to the correct individuals.
- Joined
- Apr 14, 2006
- Messages
- 23,055
I just put a freeze on at all three credit bureaus. I did it all online and had no problems. I wonder if I can get Anthem to pay me the $30 I just spent.
I think it would take prison for the executives and capital punishment for the hackers to make any headway against this problem.
Last edited:
audreyh1
Give me a museum and I'll fill it. (Picasso) Give me a forum ...
Sounds like a timely idea. Apparently a lot of states are plagued with this issue at the moment.
Of course I was referring to the current Turbotax state tax filing suspension - when has just resumed.
It does seem as if there is some massive state tax return fraud going on right now. I guess the fraudsters are trying to get a jump on filing in Feb before many folks have everything they need to file the real returns.
MRG
Give me a museum and I'll fill it. (Picasso) Give me a forum ...
- Joined
- Apr 9, 2013
- Messages
- 11,078
Haven't frozen mine yet but it is going to be. Really we should be ticked about having to pay extra for security. Do banks put a fee on your account for putting your money in a vault?
I like the idea of the punishments. These companies act like they're victims and nobody can stop these evil hackers.
BS if their freedom and the company's future depended on them not being breached; they would start to understand what "state of the art data protection" entails.
The hackers can be detected and stopped. I don't know what century our providers think were living in but the major DB vendors have provided "data at rest encryption" for years. Networks have been able to be encrypted almost forever. Offsite backups have supported strong encryption for years.
Proper security design, testing and routine drills would end 99.999% of these attacks. I've known companies that routinely run DDOS attacks against their own systems to see who's asleep at the wheel. It's all about proper controls, access rights, policies, internal controls and enforcement
What I've read from the latest hack is a port was opened then someone "forgot" to close it. If that's true the person(s) and their management should be locked up until they figure out the simple solution to what they did wrong.
