this post was submitted on 14 Aug 2024
39 points (97.6% liked)

United States | News & Politics

7181 readers
482 users here now

founded 4 years ago
MODERATORS
[email protected]
[email protected]
39
Hackers may have stolen the Social Security numbers of every American. How to protect yourself (www.latimes.com)
submitted 2 months ago by [email protected] to c/[email protected]
18 comments fedilink hide all child comments
 

Paywall removed: https://archive.is/T7xXg

top 18 comments
sorted by: hot top controversial new old
[–] [email protected] 25 points 2 months ago

Every year for the past decade, we've had a major hack involving millions of American's private info.

It's getting impossible to remember I'm how many times Ive been on those lists.

[–] Quacksalber 20 points 2 months ago (1 children)

Thank you Americans for providing yet another great example to point to, when arguing that holding private data centrally will inevitably lead to it being stolen.

[–] [email protected] 7 points 2 months ago (1 children)

If a vulnerability in a system exists, then eventually someone WILL try to exploit it.

[–] [email protected] 1 points 2 months ago

wut. If no vulnerability exists, then someone will try to exploit it.

And a vulnerability exists. It just hasn't been discovered yet.

[–] [email protected] 17 points 2 months ago (1 children)

Maybe use the number for Social Security taxes & benefits only and stop tying everything else to it, which I believe is actually illegal.

[–] [email protected] 7 points 2 months ago

Yep, but it doesn't even stop the federal government itself from using it all over.

[–] [email protected] 17 points 2 months ago (2 children)

Easy, just have such terrible credit that it's basically worthless

Taps forehead

[–] andrew_bidlaw 9 points 2 months ago

Make criminals feel pity.

[–] [email protected] 5 points 2 months ago (1 children)

I'm doing my part!

[–] [email protected] 2 points 2 months ago

I'm doing my part!

[–] [email protected] 14 points 2 months ago

In a system that requires you to give your private keys to the other person for authentication, you basically have to revoke and generate new credentials every time you auth.

So basically we need to get a new passport or drivers license or social security number after every time we take a photo of it or let someone else scan it.

So basically its impossible to protect yourself in this environment

[–] Trigger2_2000 12 points 2 months ago (1 children)

They already have mine (multiple times); thanks US government/Experian/etc.

[–] [email protected] 0 points 2 months ago

I don't think Experian was hacked. It was the other one.

[–] Trigger2_2000 8 points 2 months ago

From several years ago Experian was.

AT&T helped share my info more recently also; so many breaches anymore.

[–] [email protected] 8 points 2 months ago (1 children)

I mean, it is a limited data set of less than a billion numbers...

001-01-0000 to 728-99-9999

The area number (001) and group number (01) are also known quantites, so you can limit that set down greatly. 729 to 999 are not in use for example.

[–] [email protected] 3 points 2 months ago* (last edited 2 months ago) (1 children)

~~You're not wrong, but there are enough demographics encoded in one that they could probably match names to a lot of them, if they don't already have them, with some brokered (or stolen) data~~

Not as much data encoded as I thought. Just place of birth, but still. If you are able to get these paired with data, this could be very bad.

Or very good, depending on your opinion of the system 😜

[–] [email protected] 4 points 2 months ago

Technically not place of birth, it's the zip code of the address when the SSN was requested, but yeah, close enough for government work! ;)

[–] [email protected] 3 points 2 months ago

This could be very painful for a lot of Americans, but if it makes them overhaul the system, it might be worth it.

https://www.youtube.com/watch?v=Erp8IAUouus