
Data Breach Communications Archive: Equifax to Change Healthcare
Fifteen years of defining breach communications cases — Equifax, T-Mobile, PayPal, MOVEit, MGM, Change Healthcare — and the playbook every response team runs against.

Fifteen years of defining breach communications cases — Equifax, T-Mobile, PayPal, MOVEit, MGM, Change Healthcare — and the playbook every response team runs against.

An Equifax executive sold stock before the breach was public. The conviction became the single most quoted reference point in every cyber-disclosure conversation that followed — and the case that turned a securities filing into a communications doctrine.

Stock price recovery is not reputation recovery. Equifax's share price climbed back. The brand file did not. A standing reference for how long a reputation event survives the financial recovery — and what it actually takes to close the file.

143 million American consumers exposed in a single breach. Equifax remains the textbook crisis-communications case for the data-breach era — and the standing reference every modern breach-response playbook is built against.

The cover-up always outlasts the breach. What surfaced after the initial Equifax disclosure extended the crisis by years — and reset how every modern breach-response operation manages the document trail in the first thirty days.

Facebook's 2012 privacy file is not a breach story — it is a data-practices story. Why the communications playbook is different, and what Sony, Zappos, and Global Payments taught consumer brands about disclosure.