Equifax and Company: Personal Data Under Siege

Published:
Export View Archive

In early September, the world learned that the personal data of 143 million Americans, or about half the US population, was compromised by an free-roaming, multi-month penetration of Equifax. As one of three major US consumer credit reporting agencies, the historic breach and suspicious trading of shares by Equifax executives shortly after the breach was discovered moved the US Senate banking committee to convene a panel to question the former Equifax Chair and CEO Richard Smith.

  • With the Equifax breach, the sensitivity and comprehensiveness of compromised data escalated dramatically from password-email combinations that characterized attacks back in 2004 to complete personal identification records today. The quality of the information compromised by Equifax's failure is perhaps unparalleled except by the breach of the US Office of Personnel Management in June 2015, which affected 22.1 million* people who had undergone federal background checks and/or requested access to federal buildings.
  • The largest breach known to date occurred earlier this year when the email accounts, full names, IP addresses, and often physical address of more than 1 billion people were exposed by an attack on the email marketing organization River City Media.

A data breach often affects not only a company's reputation and customer loyalty but also the company's stock value, altering its revenue and cash flows for years to come.

  • Reduced EBITDA and revenue were the real cost of eBay's data breach of May 2014. Market analysts continue to examine to what degree the breach was responsible for the 37 percent decrease in EBITDA and a nearly 50 percent drop in revenue a year later.
  • One year after JP Morgan Chase, one of the largest banking institutions and financial services holding companies in the US, was breached, the company’s sales had dropped by 7 percent, market value by 2 percent. The bank has reportedly also invested an additional $250 million in information security to better protect customer data.
  • In the case of the Home Depot—an American retailer of tools, construction products, and related services—the company’s financial performance was only marginally affected, however, its data breach cost the company over $130 million in compensation to Visa, MasterCard, and various banks. 

* The original 21.5 million affected was revised upward to include the 4.2 million former and current federal employees whose personnel records were also breached.

Related Insights from Knoema

The Panama Papers: Key Statistics

The Washington, DC-based International Consortium of Investigative Journalists (ICIJ) has released a database of the so-called Panama Papers - information leaked primarily from Mossack Fonseca, one of the world's leading global law firms providing services of incorporation of offshore entities and headquartered in Panama. The leak is the largest ever of offshore financial records and contains about 11.5 million legal and financial records dating back more than 40 years. The files expose more than 213,000 offshore entities created in 21 jurisdictions, stripping away the secrecy from...

When Google provides information on user data requests?

Google reports that in the second half of 2012 company got 21 389 user data requests from federal agencies and governments from all over the world. Almost 40% of all requests comes from the U.S. authorities. In case of the U.S. authorities, Google provides some information for 90-80% of user data requests. Singapore, Taiwan and United Kingdom get some information from Google in 70-75% of requests. Russia, Turkey, Irland and Hungary have vary low chances to obtain requested information from Google.Access database

Global Cybersecurity Index, 2015

Technology is ever evolving and new cyber threats continue to be devised. In embracing technology progress, cybersecurity must form an integral and indivisible part of the process. Unfortunately, cybersecurity is not yet at the core of many national and industrial technology strategies. Countries need to be aware of their current capability level in cybersecurity and at the same time identify areas where cybersecurity needs to be enhanced. The Global Cybersecurity Index (GCI) is a measure of each nation state’s level of cybersecurity development. The GCI aims at providing the right...

Akamai State of the Internet Report

Akamai’s globally-distributed Intelligent Platform provides data on many metrics, namely: connection speeds, attack traffic, network connectivity/availability leading Web properties and digital media providers. Quarterly Akamai publishes the State of the Internet/Security Report based on this data. Internet Connectivity: During the first quarter of 2017, Akamai observed attack traffic originating from source IP addresses in 239 unique countries/regions, it is 0.9% increase from the number seen in the fourth quarter of 2016.Attack Traffic: In the fourth quarter of 2014, China was in...