Connect with us

Hi, what are you looking for?

The American GeniusThe American Genius

Business News

As it turns out, Equifax was warned about vulnerability

(BUSINESS NEWS) Equifax’s gigantic breach was, no doubt, terrible. But even worse was that the data company had been warned about the vulnerability.

equifax

Adding to the insult of the largest data compromise in history, where over 145 million American’s lost personal data, it turns out that data giant Equifax was warned by a security researcher, reportedly, about its vulnerability in December of 2016, and ultimately failed to act upon it until they were forced to six months later.

Apparently, a webpage on the public facing website gave that security researcher access to social security numbers, full names, birthdates, and addresses – in a page exposed to anyone that required no authentication.

In addition, he was able to hack several servers, and found vulnerabilities to simple bugs across the company’s massive online infrastructure, which suffered from a lack of patches and updates.

This leak of information has raised a number of concerns of Equifax’s security practices, which apparently have been lacking for a quite a bit.

Advertisement. Scroll to continue reading.

Multiple former employees and current employees discussed security lapses – despite the massive investment of capital and time – largely due to talent gaps and poor implementation processes.

Security mishaps in the past, including insecure internal portals, internal sabotage, and a lack of fire integrity monitoring systems. Audits apparently weren’t taken seriously, as management struggled to understand what security consultants were asking.

Ultimately, it appears that Equifax didn’t have security at the top of its mind, and is feeling that lack of urgency now.

Equifax announced on October 2nd that the security firm Mandiant had concluded the review of the impact of the breach, and the information finalized the number to the current 145 million, with no evidence attackers impacted databases located outside the United States.

In addition, though originally up to 100,000 Canadian citizens may have been impacted based on the original statement, Equifax confirmed that 8,000 Canadian citizens were impacted. The results for the UK are awaiting review currently.

Advertisement. Scroll to continue reading.

The scope of the Equifax hack has already changed the company itself massively – with a new Interim CEO and the departure of the two top security officials.

The scope of the breach has federal lawmakers discussing enhancing oversight about the largely unregulated agency of credit reporting. What happens next with over 143 million people impacted – who will be impacted for years to come – will continue to be felt.

Kam has a Master's degree in Industrial/Organizational Psychology, and is an HR professional. Obsessed with food, but writing about virtually anything, he has a passion for LGBT issues, business, technology, and cats.

1 Comment

1 Comment

  1. Pingback: Five inexpensive VPNs to keep your data yours

Leave a Reply

Your email address will not be published. Required fields are marked *

Advertisement

The
American Genius
news neatly in your inbox

Subscribe to our mailing list for news sent straight to your email inbox.

Advertisement

KEEP READING!

Business News

(BUSINESS NEWS) Recently, Congress grilled former Yahoo! CEO, Marissa Mayer, about the massive breach and she used everyone's favorite scapegoat.

Tech News

(TECH NEWS) As more Kaspersky news begins to come out, the extent of the breach seems to be compounding.

Tech News

(TECH NEWS) We're all sick of hearing about Equifax, but their former CEO just told congress the hack was one person's fault for not...

Business News

(BUSINESS NEWS) The Equifax breach gave hackers way more than millions of peoples' sensitive info. They got credit card numbers, too.

The American Genius is a strong news voice in the entrepreneur and tech world, offering meaningful, concise insight into emerging technologies, the digital economy, best practices, and a shifting business culture. We refuse to publish fluff, and our readers rely on us for inspiring action. Copyright © 2005-2022, The American Genius, LLC.