Equifax has confirmed a data breach in which both UK and US accounts have been compromised.
Action Fraud is aware of reports of a large scale data leak of Equifax customer data, which was first reported to us on Friday 8 September. Since then we have been working with Equifax, as well as law enforcement partners in the USA and UK, in order to gain a precise understanding of the extent of the data leak and whether any UK citizens may have been affected. We will post a more detailed update when we have more information to give.
Until then, anyone concerned that their data may be affected can contact Equifax by visiting the Equifax website for further information.
Criminals often use information they have obtained during a data breach to commit fraud by contacting people by email and requesting them to provide personal information or click on malicious links
An email address can be spoofed. Don’t open attachments or click on the links within any unsolicited emails you receive, and never respond to emails that ask for your personal or financial details.
The sender’s name and number in a text message can be spoofed, so even if the message appears to be from an organisation you know of, you should still exercise caution; particularly if the texts are asking you to click on a link or call a number.
Don’t disclose your personal or financial details during a cold call, and remember that the police and banks will never ring you and ask you to verify your PIN, withdraw your cash, or to transfer your money to another “safe” account.
We would also reiterate our general cyber security advice, which people can apply to their own personal data and computer devices: