USS personal data breach

[saltedcaramelhotchoc]

Has anyone else had an email from USS saying their personal data has been breached and offering them 12 months membership of something called Experian (some sort of credit reference agency)? I can't believe that first USS basically mis-invested our money and now they've managed to pass on my data... anyone else had an email today? and why aren't UCU onto this?

I just received it too. Ridiculous. Doesn't sound like there is much we can do about it either.

Just signed up for the free experian identity plus they offered but not convinced it will be that useful.

Yes, me neither. The email whilst trying to sound reassuring didn't actually sound all that reassuring.... Looking on their website, 470,000 members have been affected, which seems like a lot of people. And since we can't change NI numbers etc, nothing we can do indeed, bar join Experian...hopefully nothing comes of it all!

I haven't had one and it has not gone in my junk folder either. Sounds suspicious though

Why would you need to join Experian though?

According to the email:

"To help you to monitor your personal information for certain signs of potential identity theft, you have been given free access to a 12-month membership to Identity Plus, a monitoring service provided by Experian – one of the UK’s leading Credit Reference agencies.

This service helps detect possible misuse of your personal data and provides you with identity monitoring support, focussed on the identification and resolution of identity theft."

Yes I got the same message. It has been in the press also. Very alarming and upsetting.

Also Experian had data breach last year!

sounds cool to me. I would like to see my credit info just now for other reasons anyway. So ... works out well for me.

According to independent customer review site Trustpilot, Experian has a satisfaction rating of 1.2 out of 5.0, from more than 1,200 reviews. 93% of respondents designated it as "bad", with many citing errors on reports and customer service issues as the reason for giving the company a low score.19 Jan 2023

Thanks @saltedcaramelhotchoc

It's come through now. Blimey that is worrying date of birth and NI number! 😲

Oh marvellous - just checked Experian and I have had 8 credit checks on one day in April all for insurance companies - none that I made. So I guess they've got my details then 😡

You can see it free through MoneySavingExpert’s credit club

It looks like most members of the scheme are likely to be affected.... it's the scheme that keeps on giving....

that's worth knowing. If it lasts.
Is it truly free? MSECC isn't somehow flogging one's data or cookies to advertisers?

I wouldn't have thought of finding the credit score info or read this post if the USS hadn't been hacked & made their arrangement. So still seeing an opportunity arising from the hack.

Yes I've had it too. Because Capita is SUCH a responsible & trustworthy company ...

Not as far as I’m aware. It shows your likelihood of being approved for different types of finance, I don’t know if they get any commission from those.

https://help.creditclub.com/hc/en-us/articles/115015690488-How-do-you-make-money-from-Credit-Club-

I had an email mid-May saying they'd been hacked but haven't received another one today. Is it different to that email? I'll register for Experian etc just to be safe anyway.

It's a new email; I think only sent to people who have been hacked. However the emails still seem to be coming, from what my local UCU talk/department colleagues say as some came today (mine was yesterday)....

Mine has only come through this morning so for those who haven't got it there's a possibility it's still on the way

I went onto experian to check if my credit score had been affected and I had not noticed. Did that through a link on the moneysavingexpert website. Also rang my bank to see if there was anything I could do. They mentioned things like checking my direct debits because apparently that's all a scammer would be able to open without my bank details, changing the email address for my bank account if it's the same as my work - therefore USS - one...I'm more concerned about the NI number. That's my identifier😬.

Hey I know this thread is a few days old but I wanted to let you guys know that if you’re distressed by this data breach then you can claim compensation under the DPA and GDPR. It is a serious breach don’t let them get away with it. I certainly don’t intend to.

Who to you claim from?

@openstop You send a letter of claim to USS and they will pass on the letter to their insurers and/or solicitors. I can assure you that things are already in motion there because of the colossal public mess up and their insurers will be on notice of potential claims to come. Their insurers will probably seek to blame capita and get them to cough up but that is not your concern. You have 6 years to make a claim. Also I’m applying for a protective Cifas registration. It just flags up your name if you try and get credit to ensure that the credit provider does extra checks to confirm it is you obtaining that credit. It cost £25 for 2 years. Funny they haven’t offered to pay for that…