Worth noting looks like this breach was first reported at the start of June
this post was submitted on 07 Aug 2024
514 points (98.5% liked)
Technology
59448 readers
3724 users here now
This is a most excellent place for technology news and articles.
Our Rules
- Follow the lemmy.world rules.
- Only tech related content.
- Be excellent to each another!
- Mod approved content bots can post up to 10 articles per day.
- Threads asking for personal tech support may be deleted.
- Politics threads may be removed.
- No memes allowed as posts, OK to post as comments.
- Only approved bots from the list below, to ask if your bot can be added please contact us.
- Check for duplicates before posting, duplicates may be removed
Approved Bots
founded 1 year ago
MODERATORS
There is a small silver lining, according to the VX team: "The database DOES NOT contain information from individuals who use data opt-out services. Every person who used some sort of data opt-out service was not present." So, we guess this is a good lesson in opting out.
Wonder what the best opt-out service is.
This explains why I've been getting so many Indian scam calls the last few days.
2 billion social security numbers? What's the population of the US?
More than US.
Is this why I got the latest scam email saying I need to pay $4k in bitcoin else a video of me wanking would be leaked.
How about you send it to me instead and I'll pay you the 4k
Ok
Oh shit sorry. I must have accidentally sent that email to the wrong person. I meant to send that to my dad.
Good god. Thats like, every person that has ever used a computer probably. Fuck.
Is there a simple way to find out if your Information was in this leak, and what information it is? I use haveibeenpwned for leaks linked to my email address, but from I read in this article, it's not linked to my email address.
So how do I found out if my data was leaked without paying for a credit monitoring service?
We got notified by email from the credit monitoring our credit card provides.
I like how my social security card explicitly says not to be for identification and tax purposes only. But I need for absolutely fucking everything and to identify I'm a citizen. Can hardly sign up for a new email without a SSN. (Exaggerating of course about the email)
to identify I'm a citizen.
It's kinda worse than that
it's used to authenticate yourself as a citizen.
My SSN should at most be an ID, no different from a name. I can identify myself as Darth Vader or 4200-69-1337, but that shouldn't matter, because I should never be able to authenticate myself as either of those.
I think you miss typed a number, that one doesnt seem to be working
Any company accumulating, aggregating, and centralizing every piece of private and public information under the sun about people is a ticking time bomb (and that is a lot of companies these days).
We need harsher penalties for these assholes, and a privacy amendment so that we actually have some rights when dealing with them.
Also, from a national security perspective we need to make sure this isn't a slow attack to make westerners more vulnerable than other places that aren't liberal democracies.
How did this company leak 2.9 billion people's info, including SSNs, when the population of the US is only ~350M?
Is "National Public Data" collecting info on everyone internationally? So many questions...
Read the article? Your questions are answered there.
I just assume ssn is for a us audience and its worlwide with equivalent numbers but who knows. I mean there are only 8 bil on the planet so thats like everyone except maybe china, india, and africa
When applying to a US government position with a certain security clearance, they will do background checks of you, your family and extended family, if need be.
And I'm sure that can be the case for any employer who needs background checks. That being said, I also suspect some of these people in the database are dead.
And again they will fail to punish the company responsible for protecting this data for their criminal neglience.
Because that might damage shareholder value
It really should. The shareholders did profit from not investing in security until the incident. Let them suffer.
Who TF is "National Public Data?"
A company not dumb enough to store anything in the EU, that's who. They'd be in real trouble now! Phew.
You're kidding, right?
view more: next ›