all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Identity Thieves Bypassed Experian Security to View Credit Reports

Add to bookmarks
Jan. 9, 2023, 2:05 p.m. | BrianKrebs

Krebs on Security krebsonsecurity.com

Identity thieves have been exploiting a glaring security weakness in the website of Experian, one of the big three consumer credit reporting bureaus. Normally, Experian requires that those seeking a copy of their credit report successfully answer several multiple choice questions about their financial history. But until the end of 2022, Experian's website allowed anyone to bypass these questions and go straight to the consumer's report. All that was needed was the person's name, address, birthday and Social Security number.

a little sunshine annualcreditreport.com big bypass consumer copy credit credit reporting credit reports data breaches end experian exploiting financial history identity jenya kushnir ne'er-do-well news questions report reporting reports security sen. ron wyden thieves weakness web fraud 2.0 website

Visit resource

More from krebsonsecurity.com / Krebs on Security

Crickets from Chirp Systems in Smart Lock Key Leak 20 hours ago | krebsonsecurity.com
a little sunshine august.com can chirp systems +22
Why CISA is Warning CISOs About a Breach at Sisense 4 days, 14 hours ago | krebsonsecurity.com
agency a little sunshine breach business +28
Twitter’s Clumsy Pivot to X.com Is a Gift to Phishers 5 days, 20 hours ago | krebsonsecurity.com
april change com domain +15
April’s Patch Tuesday Brings Record Number of Fixes 6 days, 14 hours ago | krebsonsecurity.com
adobe after effects april azure azure ai +38
Fake Lawsuit Threat Exposes Privnote Phishing Sites 1 week, 4 days ago | krebsonsecurity.com
alexandr ermakov a little sunshine andrey sokol breadcrumbs +26
‘The Manipulaters’ Improve Phishing, Still Fail at Opsec 1 week, 5 days ago | krebsonsecurity.com
a little sunshine author bluebtcus@gmail.com breadcrumbs +29
Thread Hijacking: Phishes That Prey on Your Curiosity 2 weeks, 4 days ago | krebsonsecurity.com
account adam kidan a little sunshine attacks +22
Recent ‘MFA Bombing’ Attacks Targeting Apple Users 2 weeks, 6 days ago | krebsonsecurity.com
a little sunshine apple apple recovery key attacks +25
Mozilla Drops Onerep After CEO Admits to Running People-Search Networks 3 weeks, 3 days ago | krebsonsecurity.com
a little sunshine browser ceo dimitiri shelest +31

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

Information Security Engineers

@ D. E. Shaw Research | New York City
View on infosec-jobs.com

Strategic Portfolio Leader - Communications and Electronic Warfare

@ Babcock | Bristol, GB, BS16 1EJ
View on infosec-jobs.com

Senior Security Analyst (GRC)

@ ASOS | London, United Kingdom
View on infosec-jobs.com

Ingénieur(e) Réseaux et Firewalling Cybersécurité - Toulouse

@ Sopra Steria | Colomiers, France
View on infosec-jobs.com

Security Lead - Malaysia

@ Control Risks | Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia
View on infosec-jobs.com

Cyber Security Engineer

@ Ecolab | IND-Bengaluru
View on infosec-jobs.com
View more jobs