Breach and Leak Report: Materials of Equifax data breach and security issues help victims avoid further privacy leaks and claim compensation; it includes accidents reports and particular cases.
Learn how to check breach in 5 minutes |
Tips about Data Breach |
By Jackson White | Back to Breach List |
A. Around Dec 2016, an internal portal was accessible to open the Internet: Motherboard reported the issue. The researcher downloaded the data of hundreds of thousands of Americans that show Equifax the vulnerabilities within its systems. Hopefully, the defect had been fixed quickly, and cyber attackers hadn't downloaded more data then.
B. March 2017 Security Breach: Equifax had been the victim of a significant breach of its computer systems in March 2017. In early March, it started to notify a small number of outsiders and banking customers about this attack. The accident was reported to victims, but Equifax didn't fix it quickly enough. The much more serious data breaches in the following months are believed through the same route.
C. May–July Breaches: It is the worst credit data leakage in history. On September 7, 2017, Equifax announced cyber identity theft, potentially impacting approximately 140+ million U.S. consumers. The other main points are:
D: 2017 exposure of Argentinian consumer data: In September 2017, a password accident occurred at an Argentinian arm of Equifax, which exposed 14K customers and 100 staff members' private data to anyone who entered "admin" as both the username and password for one online system.
E. 2017 vulnerable mobile apps On September 7, 2017, Equifax removed its official mobile apps from the Apple App Store and Google Play because of security flaws. These flaws had no matter with the early big data breach but were vulnerable owing to some parts using HTTP instead of HTTPS.
F. 2017 exposure of American salary data On October 8, 2017, The Work Number, a website operated by Equifax, exposed the salary histories of tens of thousands of U.S. companies to anyone in possession of the employee's SSN and date of birth.
G. Website dispatch malware On October 12, 2017, Equifax's website was reported to have been offering visitors malware through download, which attackers disguised as an update for Adobe Flash. (The next day, the attack was revealed to be performed by hijacking third-party analytics JavaScript from Digital River brand FireClick.) at that time, only 3 out of 65 top anti-malware products can deal with the malware; it means many victims of the malware get infected by visiting the Equifax website.