Stop IT Incompetence masthead.
Stop IT Incompetence motto.

Data Breach Entry tab.

Experian hacked Sep 2013 - Sep 2015; HealthCare.gov hacked Oct 2013 - Sep 2015?

Experian, 2013 - 2015



Experian, one of the major credit reporting companies, like Equifax, admitted on 1 Oct 2015 to a data breach lasting over two years -- from 1 Sep 2013 to 16 Sep 2015 -- and exposing to hackers the private information of at least 15 million people, anyone who had been a customer of organizations using Experian's credit checking service, which also serves as an identity verification (authentication) service.

HealthCare.gov (Obamacare) was launched in Oct 2013, after Experian had been hacked, and used Experian for identity verification. The HealthCare.gov launch was universally declared a disaster, and Experian was a major factor in that -- the success rate of Experian's identity verification service was unacceptably low, requiring millions to follow a more complicated time-consuming procedure to verify their identities before they could get health insurance.

By two years later, when Experian admitted the data breach, people, particularly the IT incompetent media, had forgotten that HealthCare.gov used Experian for identity verification, and did not realize that millions of HealthCare.gov customers thus probably had had their private information exposed to hackers too. It was discovered and reported here first.