Companies fail to protect their databases from criminals

The Equifax hack: Here’s what’s been offered and what I think consumers should have received.

In the past few months, I have been hit several times by scammers. Someone hacked my online Target account and ordered an expensive camera that I had to return. In a matter of seconds, crooks spent $200 on my credit card before I could freeze it. I also had to cancel a premium delivery service offered by UPS that an identity thief had signed up for in my name with the intention, I assume, of rerouting fraudulently purchased items.

I now have so many alerts set up on my various financial accounts that the notifications beeping all day make me feel like I’m in a cartoon episode of Wile E. Coyote and the Road Runner. I don’t dare turn off my smartphone for fear of missing a beep that signals another attempt to compromise an account.

Then there are the constant telephone calls from con artists with just enough of my personal information to make their schemes to steal my money seem believable. I can’t answer the phone anymore without first checking the caller ID, and even then it’s possible that scammers have spoofed the telephone number from a legitimate government agency or business that I have a relationship with.

Criminals often gain access to our personal information because companies fail to protect their databases.

When there’s a major breach, consumers usually get a year’s worth of free credit monitoring. It’s something, but it’s not sufficient to fix the issue, because the notices you get as part of a monitoring service are after the fact — that is, after something suspicious or fraudulent may have occurred.

At least some of the redresses are getting better even if they still fall short of complete protection. Last week, the Federal Trade Commission announced a deal with Equifax following an epic breach that affected about 147 million people.

The FTC alleged that Equifax didn’t make a patch in its network in 2017 after being alerted to the security vulnerability. As a result, people’s names, Social Security numbers, birth dates, mailing addresses and, in some instances, driver’s license numbers were exposed, putting people at risk of identity theft.

Without admitting guilt, Equifax has agreed to pay at least $575 million, with the total possibly reaching $700 million. The concessions in this settlement are better than usual, but still not enough.

Here’s what’s been offered and what I think consumers should have received.

Good: Equifax has agreed to provide adult consumers with at least four years of credit monitoring at all three major credit bureaus. Consumers get an additional six years of free credit monitoring but only of their Equifax credit report. In lieu of the credit monitoring, consumers can opt for a cash payment of $125. People who were minors in May 2017 are eligible for 18 years of free credit monitoring. Minors will also get at least four years of three-bureau credit monitoring. The remainder will be the one-bureau (Equifax) monitoring.

Better: The additional six years should cover credit monitoring of all three major bureaus — Equifax, Experian and TransUnion. And why not provide the full 10 years of monitoring all at once? The data that was stolen in this breach is permanently out there for criminals to exploit.

Good: Equifax has agreed to pay U.S. consumers $25 an hour up to a maximum of 20 hours if they’ve had to deal with identity theft. For 10 hours or less, you simply need to describe your actions and time spent. For claims of more than 10 hours, you’ll have to show more proof.

The company will offer up to $20,000 for documented losses and expenses directly related to identity theft. Additionally, consumers who purchased Equifax credit monitoring or identity-protection products between Sept. 7, 2016, and Sept. 7, 2017, are entitled to a refund of up to 25% of the total paid.

Better: People who purchased identity-theft credit monitoring from Equifax in the year before the breach should have received a full refund.

Good: Consumers are eligible for at least seven years of free assisted identity-restoration services to help them deal with issues related to identity theft and fraud.

Better: Set up a dedicated customer-service line to walk people through freezing their credit files. All consumers are now able to place and remove a “security freeze” on their credit files for free. It’s far better than credit monitoring. With a freeze in place, potential lenders can’t see your files. This can better thwart identity thieves from using your financial information to open credit cards or take out loans in your name.

For now, take advantage of every single thing you’re entitled to in the settlement, which still has to be approved by a court. Go to to file a claim. For more information, call 833-759-2982.

This is our life now: Endless efforts to avoid being victimized because our personal data has been stolen. So any settlements reached ought to go as far as possible to ease our burden.

— Washington Post Writers Group

Talk to us

More in Herald Business Journal

Worker cheer and wave as Boeing's 787 Dreamliner takes off from Paine Field Tuesday morning on Dec. 15, 2009. (Justin Best/ The Herald
Report: Boeing will end 787 Dreamliner production in Everett

Boeing declined comment on a WSJ story saying the passenger jet’s assembly will move to South Carolina.

A Boeing 737 MAX jet, piloted by Federal Aviation Administration (FAA) chief Steve Dickson, takes off on a test flight from Boeing Field, Wednesday, Sept. 30, 2020, in Seattle. The MAX was grounded worldwide in early March 2019 after the second of two fatal accidents that together killed 346 people aboard almost-new aircraft. (AP Photo/Elaine Thompson)
FAA chief tests changes to Boeing’s grounded 737 Max

The revamped jetliner was set to take off from the former Boeing Field in Seattle for a 2-hour flight.

FILE - In this Monday, June 29, 2020, file photo, a Boeing 737 Max jet heads to a landing at Boeing Field following a test flight in Seattle. A U.S. House committee is questioning whether Boeing and the Federal Aviation Administration have recognized problems that caused two deadly 737 Max jet crashes and if either organization will be willing to make significant changes to fix them. (AP Photo/Elaine Thompson, File)
Lawmakers propose new rules targeting Boeing’s safety issues

A panel of officials would review the company’s use of workers to perform safety analysis for the FAA.

Bothell woman charged with insider trading at Amazon

The former manager in the company’s tax division will pay back the stock gains, penalties and interest.

This undated photo provided by Amazon shows the Amazon One device at an Amazon Go store in Seattle. Amazon has introduced the new palm recognition technology in a pair of Seattle stores and sees broader uses in places like stadiums and offices.  Customers at the stores near Amazon's campus in Washington can flash a palm for entry and to buy goods. (Amazon via AP)
Amazon sees broad audience for its palm recognition tech

The company says it’s more private than other biometric technology, and it’s also contactless.

Amazon to kick off holiday shopping with October Prime Day

Major retailers have said they plan to push shoppers to start their holiday shopping in October.

Boeing year-end goal for 737 max return gets boost in Europe

The company agreed to install a synthetic sensor on the next version of the plane — the 737 Max 10.

State asking Boeing what will keep 787 production in Everett

Closing that production line could cost thousands of local jobs.

Everett to consider allowing three more pot shops in city

After months of economic, planning and public safety review, the city council could vote next month.

Most Read