Equifax 'suffers data breach, losing 431,000 workers' details'

Hackers broke into tax form system, stealing personal data, it is claimed

Credit bureau firm Equifax has apparently suffered a significant data breach, with tax and salary data for more than 431,000 US workers being stolen from its systems.

The report of the leak comes via independent security researcher Brian Krebs, who claims to have seen a letter from American grocery firm Kroger to its employees, stating an unauthorised third party had accessed Equifax's W-2Express system, which lets individuals manage their W-2 tax forms (similar to a tax return in the UK) online.

"It appears that unknown individuals have accessed [Equifax's] W2Express website using default log-in information based on Social Security numbers (SSN) and dates of birth, which we believe were obtained from some other source, such as a prior data breach at other institutions," Kroger's letter said.

"Kroger is working with Equifax and the authorities to determine who is affected and restore secure access to W-2Express. At this time, we believe you are among our current and former Kroger associates using the default PIN in the W-2Express system. This does not necessarily mean your W-2 was accessed as part of this security incident. We are still working to identify which individuals' information was accessed," it added.

The company sought to reassure workers that its own systems have not been compromised, but admitted it does not know how many of them had been affected.

This is not the first time a data breach has affected Equifax's W-2Express systems, with Stanford University revealing in April that several hundred of its employees, past and present, had their details stolen.

IT Pro has contacted Equifax for its response to the allegations, but had not received a response at the time of publication.

Featured Resources

How to be an MSP: Seven steps to success

Building your business from the ground up

Download now

The smart buyer’s guide to flash

Find out whether flash storage is right for your business

Download now

How MSPs build outperforming sales teams

The definitive guide to sales

Download now

The business guide to ransomware

Everything you need to know to keep your company afloat

Download now

Recommended

Data breach exposes widespread fake reviews on Amazon
data breaches

Data breach exposes widespread fake reviews on Amazon

7 May 2021
Peloton security bug could expose user data
data protection

Peloton security bug could expose user data

6 May 2021
Tens of thousands of Pennsylvanians health data exposed following data breach
data protection

Tens of thousands of Pennsylvanians health data exposed following data breach

4 May 2021
Cost of a data breach report 2020
Whitepaper

Cost of a data breach report 2020

30 Apr 2021

Most Popular

KPMG offers staff 'four-day fortnight' in hybrid work plans
flexible working

KPMG offers staff 'four-day fortnight' in hybrid work plans

6 May 2021
16 ways to speed up your laptop
Laptops

16 ways to speed up your laptop

29 Apr 2021
How to move Windows 10 from your old hard drive to SSD
operating systems

How to move Windows 10 from your old hard drive to SSD

30 Apr 2021