My personal information has been revealed three times now by Equifax. I do not need credit, so why can't they be forced to remove all of my data from their system? Ironically, the free coverage from their last breech expired the week they announced this new massive breach.
Apparently some server in Argentina had root access with just the UID of admin, and the password of admin. This is rather incredible. But why are they still using passwords to protect sensitive data?
We need legislation to force credit bureaus to remove an individual's data upon request, and also to require two-factor authentication.