Educause Security Discussion mailing list archives

Previous By Date Next
Previous By Thread Next

[POSSIBLE Malware MESSAGE] RE: [SECURITY] Equifax gets pwned... hard.

From: Renee Peters <renee () NORTHEAST EDU>
Date: Fri, 8 Sep 2017 21:01:48 +0000
This is what the FAQ has listed, FWIW:

The arbitration clause and class action wavier included in the TrustedID Premier Terms of Use applies to the free 
credit file monitoring and identity theft protection products, and not the cybersecurity incident.



Renee Peters Director of Technology Risk & Service Management
402-844-7072| renee () northeast edu |fax 402-844-7400




NORTHEAST.EDU
801 E. BENJAMIN AVE. | PO BOX 469 | NORFOLK, NE 68702
402-371-2020  800-348-9033 FAX 402-844-7400


This email and any files transmitted with it are confidential and solely for the use of the intended recipient(s). If 
you have received this email in error, please notify the sender immediately by email and delete this email from your 
system. Please note that any views or opinions presented in this email are solely those of the author and do not 
necessarily represent those of the College. The recipient should check this email and any attachments for the presence 
of viruses. The College accepts no liability for any damage caused by any virus transmitted by this email.

-----Original Message-----
From: The EDUCAUSE Security Constituent Group Listserv [mailto:SECURITY () LISTSERV EDUCAUSE EDU] On Behalf Of Andrew 
Tristan
Sent: Friday, September 8, 2017 12:08 PM
To: SECURITY () LISTSERV EDUCAUSE EDU
Subject: Re: [SECURITY] Equifax gets pwned... hard.

You can't participate in a class action, but you can still sue.  At least, that's what I understood...

Best,
Andrew

On Sat, Sep 09, 2017 at 12:34:17AM +0800, Roy <roywatt () ACM ORG> wrote:

Correct, what I've heard is that once you register on this site, you
can no longer legally sue them.

Regards,
Roy

On Sat, Sep 9, 2017 at 12:28 AM, Davis, Michael
<MichaelDavis () letu edu>
wrote:


Obligatory "I am not a lawyer," but it appears if you sign up with
their online form for the monitoring you're agreeing you can't later
bring suit against Equifax or be part of any class action against them:


https://secure-web.cisco.com/1D5OpplySoGeJOsN4NxR0u4EHO6L-Ure2wZGaj9pLHgumO9oT-sV0PzfE8AtKAehIQgNjGfCU7hywA3osoCsZmiZkgRGKJE61FsBRUV7f8wwGZJzItyn0mbutCo93T33EErOOi70foa-VyU-rKOMfI2CKQfgsyMb2t-rTjPAZMhjB1X0mOBhuVpqZTQrS4pL8b2ZsTuCJQwj_BrBlkKco0MuLpcJV92EZiB5PTy3mODL5vsmMugbQitpksUvS1fF7i_86B_piq5tQ-Jbzi8LCYYVFIFUIU3wr8UYg8eaK09G6s3sAB6x3wPQFQliZUU62ZPA3YTa1rSlZkkJe5HPfKEmspDba5No-NtXxfPwsdoCC_qbgGbwFzyGvnwNotit9/https%3A%2F%2Ftrustedidpremier.com%2Fstatic%2Fterms


"This arbitration will be conducted as an individual arbitration.
Neither You nor We consent or agree to any arbitration on a class or
representative basis, and the arbitrator shall have no authority to
proceed with arbitration on a class or representative basis."


*Michael Davis* *|* *Director, User Support & Engagement*

*Information Technology*

*p 903.233.3500 <(903)%20233-3500>* *| f 903.233.3501
<(903)%20233-3501>
|* 
http://secure-web.cisco.com/1a5Pe8HUvH1LVGGn0Y3lKf-cYsMu2YbIESj1AR7uuSOUeDaXAJJs2MSVP-hSmxpujXXpnN35EMUO3-MVZlTtdZQE7AnVd8gN7upqyEtIZQKGSNC5w-zbWViRC_g1JyVP44QniX7pRC_en-_-I53hpXvLDb9Eb9zxLh9V99jb6yasuyW0Fi0a1qTaa4699sC0bMMPd-82SP6m0LAbhsrepDw2H-XX_L_S1hm9h_Uhs24a54vwgbvd6b66yk2_Y5ecoFTRRwxhErzEgV4M2zFxCnZaVFo-Uh2gtN3z1BTMsPWjifEP1xeRlcvetnRK3a5bUBZ7uUTDtsgCawAqdkw9JC3oCZB2ZrpN0SzkIWiJjzGA/http%3A%2F%2Fwww.letu.edu%2Fit


<http://secure-web.cisco.com/1a5Pe8HUvH1LVGGn0Y3lKf-cYsMu2YbIESj1AR7uuSOUeDaXAJJs2MSVP-hSmxpujXXpnN35EMUO3-MVZlTtdZQE7AnVd8gN7upqyEtIZQKGSNC5w-zbWViRC_g1JyVP44QniX7pRC_en-_-I53hpXvLDb9Eb9zxLh9V99jb6yasuyW0Fi0a1qTaa4699sC0bMMPd-82SP6m0LAbhsrepDw2H-XX_L_S1hm9h_Uhs24a54vwgbvd6b66yk2_Y5ecoFTRRwxhErzEgV4M2zFxCnZaVFo-Uh2gtN3z1BTMsPWjifEP1xeRlcvetnRK3a5bUBZ7uUTDtsgCawAqdkw9JC3oCZB2ZrpN0SzkIWiJjzGA/http%3A%2F%2Fwww.letu.edu%2Fit>

------------------------------
*From:* The EDUCAUSE Security Constituent Group Listserv <
SECURITY () LISTSERV EDUCAUSE EDU> on behalf of Roy <roywatt () ACM ORG>
*Sent:* Friday, September 8, 2017 11:04 AM
*To:* SECURITY () LISTSERV EDUCAUSE EDU
*Subject:* Re: [SECURITY] Equifax gets pwned... hard.

Hi Dan:
Thanks for reminding and sending. One of the questions I am
wondering is if we are putting our data "back in danger again" by
providing this information? :)


Regards,
Roy

On Fri, Sep 8, 2017 at 11:49 PM, Jones, Dan J <djjones () wpi edu> wrote:


This link will allow you to see if your data was included in the
breach and to sign up for monitoring.

https://secure-web.cisco.com/15DbKHKyOmrgSWxu7nVfSBRMb4Bo58dg-oc2WF1pp_3Y9i1mm6PaUMWD-jZepgTI1nkOtZ5Y1TmJAhNtXKiZJY4MvmP-nTUnbiG9WQ_GZfhdY6KfVRry39RzSE-0yeoCTBQnySTlzHbFeIacZFFKZg3AVyjbWlHIvNzOUCCjFkXeTgqAm2OkIz-9h5Z1iujJLQZm6QMwFQtu1JKPFD3MlPy8qpF6O0fKhFXM36pHAFWMIjOcI0o11vqDD4wsQNG62Fuuqe7MU_QhtVh-yuAyp415nYa9xmgntZFCOhO2VSbO0YT72HobdEsbPAb_yg77MES1FYqDm-kpUh59RLxPLMqRsWiv_QWH_BYKo6hrbpmk/https%3A%2F%2Fwww.cnet.com%2Fhow-to%2Fequifax-hack-find-out-if-you-wer
e-one-of-143-million-hacked/


Dan Jones
Worcester Polytechnic Institute


-----Original Message-----
From: The EDUCAUSE Security Constituent Group Listserv [mailto:
SECURITY () LISTSERV EDUCAUSE EDU] On Behalf Of Valdis Kletnieks
Sent: Thursday, September 07, 2017 9:12 PM
To: SECURITY () LISTSERV EDUCAUSE EDU
Subject: [SECURITY] Equifax gets pwned... hard.

Not *directly* a higher-ed issue, but it's big enough that the
fallout is going to be on *everybody*s radar.

"Equifax, one of the three major consumer credit reporting
agencies, said on Thursday that hackers had gained access to
company data that potentially compromised sensitive information for
143 million American consumers, including Social Security numbers and driver's license numbers.

The attack on the company represents one of the largest risks to
personally sensitive information in recent years, and is the third
major cybersecurity threat for the agency since 2015."

Be prepared for all sorts of identity theft attacks and very
customized phishes.....

https://secure-web.cisco.com/1yIhkxwJq0T509sy0QEFukCDUtF5SmU-ZGGcNsdrPmAYgSznX22PRBItLJAfCrlGswPgfXmjuty_S25bbx923rq1e1ZQkzwxNCFeLkVeT7LlUxpasvK8ITQrf16mn7_lUD7C62E1kQ7SIyKEU0tUXlHOgSK9Q_Rc5nTepUo_F_klkW001MA_gFXT_OV9r52eyTy1Tgu2EonUU2hn4gAJaldHj6bw3m0j55dZ86AMMWpLUW2F-DBzk583Uy1jZwD6_yBVA5K64NcSSHpDzIBTf_aXCFbxV3AebfN4pHAgl-et7EwCZ3ZHDMGpjXx13RkHUaImCy-Buc2woHeIcOCQDlFsxHOGwHiAqtQHTNmrXCwg/https%3A%2F%2Fwww.nytimes.com%2F2017%2F09%2F07%2Fbusiness%2Fequifax-cyberattack.htm
l





--
This e-mail contains PRIVILEGED AND CONFIDENTIAL INFORMATION
intended only for the use of the Individual(s) named above. If you
are not the intended recipient of this e-mail, or the employee or
agent responsible for delivering this to the intended recipient, you
are hereby notified that any dissemination or copying of this e-mail
is strictly prohibited. If you have received the message in error,
please advise the sender by reply e-mail and delete or destroy the message. Thank you.





--
This e-mail contains PRIVILEGED AND CONFIDENTIAL INFORMATION intended
only for the use of the Individual(s) named above. If you are not the
intended recipient of this e-mail, or the employee or agent
responsible for delivering this to the intended recipient, you are
hereby notified that any dissemination or copying of this e-mail is
strictly prohibited. If you have received the message in error, please
advise the sender by reply e-mail and delete or destroy the message. Thank you.


--
Andrew Tristan
Information Security Analyst
Information Technology Services
University of California, Riverside
Previous By Date Next
Previous By Thread Next

Current thread: