BrianKrebsJan 25, 2023

Experian has officially acknowledged my Dec. 23 report to them about a security weakness that exposed any consumer's credit file if you knew their name, address, SSN and DoB.

Experian says the weakness persisted on their site for 47 days, from Nov. 9, 2022 until three days after I notified them.

New story here:
https://krebsonsecurity.com/2023/01/experian-glitch-exposing-credit-files-lasted-47-days/

Experian Glitch Exposing Credit Files Lasted 47 Days – Krebs on Security

Show threadMiddy
@briankrebs interesting. What was the potential impact of this? I'm not too familiar with credit reports; what can an attacker gain from them which they wouldn't already be able to get with name/DoB/SSN?
Jan 26, 2023 at 2:28amWeb