Page 1 of 1

Latest employee W2 data theft story - Kroger

Posted: Mon May 09, 2016 3:01 pm
by Judge Roy Bean
A confluence of dumbness has led to a vulnerability in Equifax's system that has resulted in Kroger sending this warning in a letter to employees:
We believe individuals gained access to some Kroger associates’ electronic W-2 forms and may have used the information to file tax returns in their names in an effort to claim a fraudulent refund.
https://krebsonsecurity.com/2016/05/cro ... u-equifax/

Seriously - in this age of heightened data theft awareness, Equifax was using the old "last four digits" of an SSN and someone's year of birth as a default access PIN? :oops: :roll: :shock: