The figures for the amount of compromised Social Security numbers was again revised upwards, now to 146.6 million. Back on Sept. 7, 2017, when the breach was announced, the figure was 143 million.
In the filing, Equifax spelled out exactly how many people were impacted in a variety of different fields, painting a far more detailed picture of the data breach.
According to the filing, almost everyone involved had their name, date of birth, and Social Security number compromised, though 1.1 million people didn’t get their number compromised.
Ninety-nine million people had their address compromised, and 209,000 people had credit card numbers and expiration dates stolen as well, putting a new category of potential fraud damage in question.
In its filing with the SEC, Equifax noted that it did not expect further impacted people to be identified, but restated an oft-forgotten part of the hack: that 182,000 people who used the credit agency’s portal to resolve disputes had their uploaded images of their photo IDs leaked as well. (Equifax notified them by mail last fall.)
Equifax had a company analyze that data, and found that 3,200 passport images were compromised as well as other personal identification documents.