It's my understanding that if you look up the same person on multiple sites each site blocks out different parts of the SSN. Do enough inquiries and you have a valid number.
Of our 14 close family members, 13 of them were in the data breach.
I feel credit reports should be automatically frozen and inquiries should due extra diligence to ensure it's the right person applying.
So following up... one of the screenshots in the article I linked shows its from Credit Journey (which I know is from Chase Bank because I have it already). I went in there and they have a free credit scan/alerts which I guess I had not signed up for.
So email/pw breach... guessing this duplicate entry is the same breach so as the article suggests they just piled a bunch of extra junk on top of the original NPD data to make it look bigger. The 8/24 entry is probably part of what got piled into the NPD breach. Since I often use random passwords and keep them in a separate app I know that this password ending in 97S was leaked from a specific site freepetchipregistry.com
SSN, I guess I was in there, seems to be just be a normal cycle though, just be diligent and everyone should at least be signed up for some sort of FREE service that alerts you of any credit checks (then you know if someone else is trying to open credit in your name). Credit Karma being one of them that I still use and started with when my credit was terrible to help track changes.
So bottom line, you can check into this yourself with FREE services if you want.
I do not pay for any sort of identity protection services, I just utilize free services from companies I already do business with.
If you use the same passwords across multiple sites, BE SURE to use some sort of 2FA.
Started with the USG Office of Personnel Management loosing my data for a Top Secret clearance. You can imagine the details there.
Then AT&T plus several others. I keep reporting locked on all three credit unions, have fraud alert also enabled. Plus I have two free monitoring services because of the past sins.
After the Experian debacle I assume I have no private information, well maybe the name of the beer in front of me (but not ever sure about that, my Smart refrigeration may be spying on me.)
And a week or so there was a breach of a company named "Chance" now owned by UnitedHealth Care. So in my mind this breach from National doesn't get me excited.
However I did learn a minor 16 or older could put a freeze on there credit. I would suggest all folks at that age learn how to freeze and freeze all three credit bureaus.
In addition to freezing credit at the Big 3 credit bureaus, consider freezes at the 4th (smaller) credit bureau Innovis and the bank-account system site ChexSystems.
All freezes are easy-peasy (and free) to quickly unfreeze and refreeze whenever necessary.
Get a high-quality password program and USE it! I've long used 1Password and highly recommend it.
Finally, if you haven't set up your SSA account profile at ssa.gov, do that immediately... If a scammer beats you to creating that profile, it's just one more painful thing to untangle.
ETA -- sorry JohnRob, I intended to reply to topic, not you specifically.
Thank you guys… I have been so far down so many rabbit holes the last couple weeks that I have not been paying attention to any news. I’m already a Chase member so I just enrolled in credit journey, and it turns out my SSN was exposed yesterday. Credit freezes this morning.
My Social Security card was stolen in the late 90's (Before I knew better to actually carry it,), my last employer lost three laptops in two years with my info on them, Home Depot, Equifax, and at least a dozen other breeches.
This has gotten me thinking about going on a mission to close, or update passwords on "Zombie" accounts I no longer or seldom use. Last time I had to rebuild my Enpass password manager database, in 2017 it was at 450ish passwords and logins. It's only grown since then.
Thanks for the links above, good to double check that I had everything handled.
A good reminder: never use 2FA via SMS if there is an authenticator app option, because phone numbers can get jacked. It's not common, but it does happen.
I was a systems programmer who supported the app developer tools and migrated them to a Cobol 85 standard compiler. I may have been the only person there who ran true 85 standard code through it lol
Being a systems programmer/administrator was WAY more fun than being an app dev. I got to program in many languages--and the computer never got away with telling me I didn't have permission. Rofl
Also: indeed, the MOST critical sites have the poorest security, while useless sites make you jump through hoops to get signed in.
How are you all freezing your credit with the three companies? Went to do it and Experian wants $24.95 a month and transition wants something ridiculous as well. Isn’t it free to lock your credit?