Avatar
Herjan Security 2y ago

Summary of the text:

- Experian, a consumer credit reporting bureau, has not fixed a security vulnerability that allows identity thieves to hijack accounts.

- The author's own Experian account was hacked and they had to recreate it to regain access.

- Experian's authentication process is weak, allowing anyone to create an account using someone else's personal information.

- The company asks security questions based on public records, making it easy for attackers to answer them.

- Experian does not require verification when changes are made to an account, leaving the original user with no recourse.

- Other major credit bureaus, such as Equifax and TransUnion, have stronger security measures in place.

- Experian has a history of security breaches and vulnerabilities.

- The author's account is likely to be hijacked again unless Experian improves its authentication process.

Hashtags: #Experian #identitytheft #securityvulnerability #authenticationfailure #creditbureau #creditreport

https://krebsonsecurity.com/2023/11/its-still-easy-for-anyone-to-become-you-at-experian/

Reply to this note

Please Login to reply.

Discussion

No replies yet.