![](\"https:\/\/media.wired.com\/photos\/5a29a08c15e73c599bf953fc\/master\/pass\/SecurityVideo-CorporateHack-FINAL.jpg\"\/)
<\/p>\n<\/p>\n
Credit to Author: Brian Barrett| Date: Fri, 08 Dec 2017 12:00:00 +0000<\/strong><\/p>\n At this point, <\/span>it's safe to assume that everyone's been affected by one megabreach or another. But when the next Equifax debacle happens, know that there's plenty you can do to help dampen the fallout.<\/p>\n When a big company that has your personal information\u2014like passwords or credit card numbers\u2014gets hacked, it means, in a way, that you got hacked too. At the very least, it means some of your most sensitive information out there in the ether, just waiting for a hacker or identity thief to make your life miserable.<\/p>\n The most frustrating part of these breaches, whether they affect 70 million people like the 2014 Target hack<\/a>, 143 million, like the recent Equifax bungle<\/a>, 500 million, like a Yahoo hack<\/a> disclosed last year, or three billion<\/em> people<\/a>, like \u2026 yet another Yahoo attack, is that there\u2019s nothing you can do to prevent them, other than becoming an internet hermit, so that no one has your info in the first place.<\/p>\n As nice as that sounds, it\u2019s also totally impractical. But don\u2019t give up hope! While there's only so much you can do, the options available to you can make a big difference.<\/p>\n First, confirm if you\u2019ve been directly impacted. For the biggest breaches, like Equifax, companies will often set up a dedicated website that crosschecks your info against impacted accounts. (Unlike Equifax, they usually don't screw it up<\/a> to an alarming degree.)<\/p>\n You should also check out a site called HaveIBeenPwned<\/a>, and yes that\u2019s the real name. Security researcher Troy Hunt has made it his mission to collect info from as many breaches as possible; so far it\u2019s logged nearly five trillion<\/em> accounts.<\/p>\n HaveIBeenPwned shows you not just if you\u2019ve been impacted, but the specific type<\/em> of information that may have been exposed. That way you'll know if it's time to change your password, or cancel your credit cards, or both.<\/p>\n Speaking of which: If your info was caught up in a breach, change your passwords not just for whichever company or service leaked them, but anywhere else you might reuse it. And speaking of that:<\/em> Don\u2019t reuse passwords<\/a>. Get a password manager<\/a> instead.<\/p>\n If the breach potentially includes extra-sensitive information, like credit card or Social Security numbers<\/a>, companies sometimes offer free credit monitoring for a year, maybe more. Go ahead and sign up for that; it\u2019ll help you act fast in the event that someone uses your info to try to open a credit account in your name. Just remember that the threat doesn\u2019t fade after the free monitoring does, especially in the most dramatic cases. Pilfered data can float around the dark web for years. And Social Security numbers aren\u2019t like passwords; they\u2019re really hard to change. So keep a close eye on your bank accounts, basically… forever.<\/p>\n In fact, the most galling part of all of this is that you should probably be doing that sort of monitoring anyway; large companies are notoriously slow to fully disclose breaches. Uber even paid off hackers<\/a> to hide a 57 million user breach for a full year.<\/p>\n Breaches are frustrating and scary, but also so common these days that it\u2019s easy to just throw up your hands. But it\u2019s worth a little vigilance to help stave off the serious headaches that having your identity stolen, or accounts taken over, would cause.<\/p>\n