Companies fail to protect their databases from criminals

The Equifax hack: Here’s what’s been offered and what I think consumers should have received.

In the past few months, I have been hit several times by scammers. Someone hacked my online Target account and ordered an expensive camera that I had to return. In a matter of seconds, crooks spent $200 on my credit card before I could freeze it. I also had to cancel a premium delivery service offered by UPS that an identity thief had signed up for in my name with the intention, I assume, of rerouting fraudulently purchased items.

I now have so many alerts set up on my various financial accounts that the notifications beeping all day make me feel like I’m in a cartoon episode of Wile E. Coyote and the Road Runner. I don’t dare turn off my smartphone for fear of missing a beep that signals another attempt to compromise an account.

Then there are the constant telephone calls from con artists with just enough of my personal information to make their schemes to steal my money seem believable. I can’t answer the phone anymore without first checking the caller ID, and even then it’s possible that scammers have spoofed the telephone number from a legitimate government agency or business that I have a relationship with.

Criminals often gain access to our personal information because companies fail to protect their databases.

When there’s a major breach, consumers usually get a year’s worth of free credit monitoring. It’s something, but it’s not sufficient to fix the issue, because the notices you get as part of a monitoring service are after the fact — that is, after something suspicious or fraudulent may have occurred.

At least some of the redresses are getting better even if they still fall short of complete protection. Last week, the Federal Trade Commission announced a deal with Equifax following an epic breach that affected about 147 million people.

The FTC alleged that Equifax didn’t make a patch in its network in 2017 after being alerted to the security vulnerability. As a result, people’s names, Social Security numbers, birth dates, mailing addresses and, in some instances, driver’s license numbers were exposed, putting people at risk of identity theft.

Without admitting guilt, Equifax has agreed to pay at least $575 million, with the total possibly reaching $700 million. The concessions in this settlement are better than usual, but still not enough.

Here’s what’s been offered and what I think consumers should have received.

Good: Equifax has agreed to provide adult consumers with at least four years of credit monitoring at all three major credit bureaus. Consumers get an additional six years of free credit monitoring but only of their Equifax credit report. In lieu of the credit monitoring, consumers can opt for a cash payment of $125. People who were minors in May 2017 are eligible for 18 years of free credit monitoring. Minors will also get at least four years of three-bureau credit monitoring. The remainder will be the one-bureau (Equifax) monitoring.

Better: The additional six years should cover credit monitoring of all three major bureaus — Equifax, Experian and TransUnion. And why not provide the full 10 years of monitoring all at once? The data that was stolen in this breach is permanently out there for criminals to exploit.

Good: Equifax has agreed to pay U.S. consumers $25 an hour up to a maximum of 20 hours if they’ve had to deal with identity theft. For 10 hours or less, you simply need to describe your actions and time spent. For claims of more than 10 hours, you’ll have to show more proof.

The company will offer up to $20,000 for documented losses and expenses directly related to identity theft. Additionally, consumers who purchased Equifax credit monitoring or identity-protection products between Sept. 7, 2016, and Sept. 7, 2017, are entitled to a refund of up to 25% of the total paid.

Better: People who purchased identity-theft credit monitoring from Equifax in the year before the breach should have received a full refund.

Good: Consumers are eligible for at least seven years of free assisted identity-restoration services to help them deal with issues related to identity theft and fraud.

Better: Set up a dedicated customer-service line to walk people through freezing their credit files. All consumers are now able to place and remove a “security freeze” on their credit files for free. It’s far better than credit monitoring. With a freeze in place, potential lenders can’t see your files. This can better thwart identity thieves from using your financial information to open credit cards or take out loans in your name.

For now, take advantage of every single thing you’re entitled to in the settlement, which still has to be approved by a court. Go to equifaxbreachsettlement.com to file a claim. For more information, call 833-759-2982.

This is our life now: Endless efforts to avoid being victimized because our personal data has been stolen. So any settlements reached ought to go as far as possible to ease our burden.

— Washington Post Writers Group

More in Herald Business Journal

Boeing asks that its big state tax break be suspended

The company hopes the move will resolve a trade dispute involving European rival Airbus.

Boeing finds debris in wing fuel tanks of several 737 Maxs

The company did not say what the objects were found, but one report said they included tools and rags.

Charge: Lynnwood tobacco smuggler dodged $1 million in taxes

The man, 57, reportedly dealt in illicit cigarettes. Tax returns claimed he sold hats and T-shirts.

Some dissent emerges on new engineering contract with Boeing

“This is being shoved down our throats,” said one SPEEA council rep.

FAA faces dilemma over 737 Max wiring flaw that Boeing missed

The vulnerability could lead to an emergency similar to the one that brought down two jets.

Everett’s new passenger terminal gets some national love

Paine Field was voted 8th-best among a selection of small airports, some of which aren’t all that small.

United pushes back expected return of grounded Boeing planes

United, Southwest and American are bracing for a second straight summer without their Max planes.

US manufacturing output hit by Boeing troubles, slips 0.1%

Excluding the production of airplanes and parts, factory production rose 0.3%.

Boeing and engineering union agree on new, extended contract

The board of SPEEA will recommend the proposal to its 18,000 members in the Puget Sound area.

Airbus CEO sees no short-term benefit from Boeing Max woes

The European planemaker’s competing A320 is sold out through 2025.

Virus outbreak in China poses a new problem for Boeing

A number of deliveries are ready for Chinese customers who “cannot come to Seattle to take delivery.”

Boeing wins zero orders and delivers just 13 jets in January

Airbus by comparison had a big order month, winning net orders for 274 commercial aircraft.