Thursday, 19 October 2017
Latest news
Main » Equifax compromised yet again as its website directs visitors to install malware

Equifax compromised yet again as its website directs visitors to install malware

13 October 2017
Equifax compromised yet again as its website directs visitors to install malware

At issue is a consumer-facing website used for credit-report assistance.

A Equifax spokesperson acknowledged the problem, saying, "Our IT and Security teams are looking into this matter, and out of an abundance of caution have temporarily taken this page offline".

Independent security analyst Randy Abrams claims that the company's website was compromised for several hours on October 11 and was redirecting customers to a fake Adobe Flash update download.

Having already leaked the personal information of half the people in the entire United States, you might think things have gotten pretty much as bad as they can get for Equifax.

Company spokesman Tom Carroll did not respond to direct questions about any potential breach to Equifax Canada's website or the number of Canadian or American Equifax customers that may have been affected. Abrams told tech reporters at Ars Technica that he discovered the hack while using Equifax to dispute his own credit report.

Earlier this month, Equifax said its outside security consultant had concluded an investigation into the breach, which it first detected in July. Just last month Equifax announced that hackers broke into its servers and, over a period of three months, stole the private data of 145.5 million customers.

On its website, Equifax's Canadian division says it has not yet mailed out any notices and made clear it would not be making any unsolicited calls or emails about the issue.

The company has taken part of its website offline after an independent analyst said the site may have been hacked.

Soon after the report surfaced the company took the web page down.