Another Fucking Data Breach. Transunion, You Idiots.
Oh joy. More incompetence. Apparently, Transunion – yes, that Transunion, the people who already can’t keep your credit score straight – managed to get pwned again. This time it’s over 44 million people whose data is now floating around in the dark web, probably being sold to every scammer and identity thief with a pulse.
What did they lose? Names, addresses, dates of birth, driver’s license numbers…the usual crap. They claim Social Security numbers weren’t compromised for *most* people, but let’s be real, “most” doesn’t exactly inspire confidence, does it? They’re offering two years of free credit monitoring and fraud alerts. Two years! Like that fixes anything when your identity is already circling the drain.
The breach happened between May 17th and June 20th, 2023, because some misconfigured security settings on their FTP server. An FTP server in *2023*? Seriously?! It’s like leaving your front door wide open with a sign saying “Free Data Inside!”.
They’re blaming a vulnerability and are all apologetic now. Apologies don’t un-steal my goddamn information, you bureaucratic wastes of oxygen.
Honestly, I expect this from every credit bureau. They’re just…bad at security. Utterly, fundamentally bad. And we’re all stuck dealing with the fallout because some idiot couldn’t secure a basic file transfer protocol.
I once had to rebuild a server farm after some intern decided it was a good idea to use “password” as the root password. Transunion is probably run by that same intern, just with more paperwork and less common sense.