2023 is here and yet again Experian strikes again
My name is Jenya Kushnir I am the one who found this bug.
I have tried to contact Experian myself to let them know they have a big problem but like always got bs run around and no clear response, after that I tried to find a bug bounty program to see if I can submit a report but found out later that they don’t do this kind of programs, it’s really bad as I think it who’d helped a lot.
I think that companies like Experian, TransUnion, and Equifax should think about investing some of the money they make from reselling data from a Billion dollar market into their security a little bit more, and invest in bug bounty programs that way it will help avoid this kind of problems.
So what I did next is contact Brian at krebsonsecurity.com and told him what I have found.
Spoiler Alert there is also a major problem with TransUnion BUG much bigger than Experian.
I am from Ukraine and as I said to Brian most of the stories about Ukraine hackers that are identity thieves, and puts a mark on people from Ukraine, so maybe this will show that non all of us are bad, and like I said quote:
“I want to try and help to put a stop to it and make it more difficult for [ID thieves] to access, since [Experian is] not doing shit and regular people struggle,” Kushnir wrote in an email to KrebsOnSecurity explaining his motivations for reaching out. “If somehow I can make a small change and help to improve this, inside myself I can feel that I did something that actually matters and helped others.”
It’s really hard right now here with the whole War going, power blackouts, and everything else, doesn’t want to sound petty but if someone can help out, really who’d appreciated donations?
I who’d use this to buy upgrade my gear, buy a power generator and maybe a Starlink so I can do more research and try to help stop and make it harder for identity thieves
Thank you Brian for sharing this story and everyone who reads this
Happy new year to everyone and stay safe and secure
Wallet addresses below for donations
ВТС — bc1qfeq4hfclexv0y4hx7updzt0pnm7pu38zk0g40e
ETH — 0x43D09322cc162D1C4FaeB674398262bf9415A66F
TRON — TXagnv8eFH7rj6f5vq9ramTGSVcQbY7ipG
USDT TRC20 — TXagnv8eFH7rj6f5vq9ramTGSVcQbY7ipG
USDT ERC20–0x43D09322cc162D1C4FaeB674398262bf9415A66F
