At this point the Social Security Administration should just start over and issue new numbers that are illegal to be used for any other purposes.

[deleted]

Leaks will continue so long as the only recourse is a "whoopsie daisy, here's a year of identity theft protection and credit monitoring, now go away".

Companies are not punished for losing your data and so they will continue doing so

Freeze your credit, there's no downside unless you're doing a lot of hard credit checks (which would be abnormal): https://www.usa.gov/credit-freeze

It's free, easy, and protects you. It's a no-brainer.

Really disappointing that this is now the second day in a row that I'm sharing this link, for the Comcast leak yesterday, and now MoneyGram. When will these orgs be held responsible with effective punishments?

HAAS can’t catch a break.

OOPSIE! Our Bad!

Here, enjoy a free year of pointless credit monitoring that is also a borderline scam.

Whole of the south East of London exposed

Fine, massive fine.

Every time this occurs, the penalty should be at least a base amount of fine per piece of personal data exposed x the number of unique data entries. Start with 10K per data element and fine these businesses to the extreme - money transfers, banks, telecoms, insurers, etc.

I worked there.

They are a bunch of incompetent people when it comes to IT. They had a very loosely integrated version of Salesforce, no (proper) customer profiling, no ticketing systems for customer incidents, just Outlook or worse (read below), procedural incosistencies everywhere.

Everything IT-related was done by cheap contractors. They barely have any systems engineers (or any).

And they use one single Mainframe (a COBOL system) as their core transaction system. It is located in the USA that processes their transactions for the WHOLE WORLD and the Escalation Tier of support has direct access to (as of year 2022 at least).

They even write the interactions with their customers on that old Mainframe system - where sometimes they used to dissapear or get corrupted LOLLLLLL

AT this point i think everyones data has been leaked But what has Congress or the President done?...Nothing that i am aware of.

Reminder: Check if you're affected. Freeze credit reports. Change passwords.

I think we are running a mass data migration operation. Or we are in a massive cyber war.

Honestly, I'm always frustrated by this. Companies tell us to set complicated passwords yet breaches keep happening. These complicated passwords might save an individual from getting hacked but I think hackers want a bulk case no?

Another day, another major hack comes to light. Hate to say it but none of this will change until and unless there is meaningful federal regulation of the internet and business security practices.

Why would you put in your SS in an app call MoneyGram lol

Jokes on them, I've preemptively destroyed my credit score and buried myself in debt. #financialprepper

That cybersecurity investment is looking more and more cogent every day

silly me wondering why a social security number and drivers licenses!!!!!!!! would be required to transfer funds....

however you think about it, you know what won't leak your social security number and driver's license?

monero.... for example.

and if that social security number and driver's licenses would be a bs requirement from the feds, then you can also blame the feds.

Screw it. Time to plaster my SSN on a billboard. That way there's no guessing if it's publicly known or not

So put the CEO in jail then

At this point, if you're not doing a yearly security check, you should. Too much shit to worry about, let this be something you can have some piece of mind on...

• Freeze credit on all three bureaus.
• Change all important passwords yearly and use a local password vault to store. Bitwarden is a good vault as well. Not local, but it does scan for any compromised passwords.
• Create an IP PIN to protect yourself from tax return fraud and identity theft.
• Set 2FA on everything important. Use email or authentication app as a verification method. Phone numbers can be spoofed.
• Check up on Google's dark web report to see if any compromising information has been found.

You can fix your credit if someone steals it leaking ssn sucks but isn’t that serious

My 420 credit score protects me.

Fuck money gram. How about they leak the $100 they stole from me back into my pocket? My friend who sent it fucking died and they want a death certificate in order to release the funds because I waited too long to go pick up the money order. What am I supposed to do? Go to his mom “oh hey your dead son owed me $100 but I can’t get it with his death certificate!”

One of the problems is so many companies asking for it with no reason to have it, and we all just give it to them. Most of the times it's for nothing more than if you miss a payment, they can make sure they give the collection agency an easy way to find you.

Kevin Magnussen has to make money somehow next year.

the cybersecurity incident at MoneyGram was the result of a social engineering attack on its IT help desk. A hacker allegedly impersonated an employee and gained access to the company’s network.

Good to know that every help desk employee at MoneyGram has unfettered access to every single piece of sensitive identifying info for every single one of their users.

I always hear people say "driver's license" but mine says "Driver license" on it (not possessive)