Please Have This Credit Monitoring Service…

Nuclear symbol

“Your data’s been compromised, but, please, have this credit monitoring service…”

Which you already have because your data’s been previously compromised.

In the 80s, conversational zeitgeist would tell you that the US stockpiled enough nuclear arsenal to obliterate the world something like 35 times over. I don’t know the actual multiplier; I was a kid collecting mental fallout shelter sign locations.

You get the point. Offering credit monitoring to people who likely already have credit monitoring.

The breach I was reading about involved multiple third parties. Similar to the MOVEit, where the file distribution software had the vulnerability (Fortra’s GoAnywhere). The organization using the Fortra software sent the letter, and the next level of GoAnywhere’s using customer affected organizations served consumers. Industry: Healthcare.

So, consumer, your name, address, social security number, and other details – likely in the hands of someone whose actions will mean affected people will receive email from Troy Hunt (haveibeenpwned[.]com – you have to sign up for the email, but please do).

Consumers feel helpless here. They have to go to the doctor. And the doctor’s going to collect their info, including their social security number. You can opt out of giving that – I have before. Some places will refuse to serve you, and others will have capabilities in the software they use that’ll assign a different unique identifier. Your insurance will insist on that SSN, though.

And we talk with consumers about cybersecurity – tips, tricks, things to do. Some are incredibly technical and others easy. But if you’re receiving these letters all the time, your attitude might be “why bother?” Or, another reaction.

Response 1: “Well, okay, I get these letters frequently, but they don’t really seem to matter. Yeah, my data’s out there. So what? No harm.”

Response 2: “Everything’s out there. What a mess! Nothing I do will matter.”

Response 3: “Hmm, I might want to study cybersecurity.”

I like Response 3.

Summing my screed – Yes, sadly, your data will be caught in breaches. Fallout in the modern world.

Take Response 3.

#consumers#cybersecurity#privacy#thirdpartyriskmanagement

Scroll to Top