Experian, 2013 - 2015
Experian, one of the major credit reporting companies,
admitted on 1 Oct 2015 to a data breach lasting over two
years -- from 1 Sep 2013 to 16 Sep 2015 -- and exposing to
hackers the private information of at least 15 million people,
anyone who had been a customer of organizations using
Experian's credit checking service, which also serves as an
identity verification (authentication) service.
HealthCare.gov (Obamacare) was launched in Oct 2013, after
Experian had been hacked
, and used Experian for identity
verification. The HealthCare.gov launch was universally
declared a disaster, and Experian was a major factor in
that -- the success rate of Experian's identity verification
service was unacceptably low, requiring millions to follow a
more complicated time-consuming procedure to verify their
identities before they could get health insurance.
By two years later, when Experian admitted the data breach,
people, particularly the IT incompetent media
forgotten that HealthCare.gov used Experian for identity
verification, and did not realize that millions of
HealthCare.gov customers thus probably had had their private
information exposed to hackers too. It was discovered and
reported here first.