Since I have been Security+ exam, I have been reading up on the latest cybersecurity threats. Lately, one came to me in the mail!
I received a letter regarding a data breach and that my information may have been comprised.
However, several things concerned me:
- The insurance company: I have never done business with Infinity Insurance Company nor (knock on wood) been in any incident with any of their drivers.
- The stamped envelope and return address had different locations.
from the first page of the letter
also some other people who stated that this a scam noted the lack of company letterhead on the letter.
from the envelope - Phone number provide 877-316-0057 does not yield a company name when conducting reverse phone number search on https://www.whitepages.com/reverse-phone
- Site provided, https://www.experianidworks.com/plus or www.ExperianIDWorks.com/restoration , is not an Experian site. Here is an example of what the other pages on the real Experian site looks like: https://www.experian.com/contact/personal-services-contacts.html#content-04 or https://www.experian.com/consumer-products/identity-theft-and-credit-protection.html which all start with https://www/experian.com not a wholly different domain name.
Also, the letter received has very few typographical errors as the scammer probably copied the actual letter located at https://oag.ca.gov/ecrime/databreach/reports/sb24-539174
If you get a letter like this, please let Experian know:
Email: support@experiandirect.com
Twitter: @Experian_US
Facebook: https://www.facebook.com/experian
Instagram: https://www.instagram.com/experian/
