|Latest Updated Resources|
|By Jackson White|
A. Around Dec 2016 internal portal was accessible to open Internet: The issue was reported by Motherboard. In total, the researcher downloaded the data of hundreds of thousands of Americans in order to show Equifax the vulnerabilities within its systems. Hopefully, the defect had been fixed quickly and no more data were downloaded by cyber attackers.
B. March 2017 Security Breach: Equifax had been the victim of a major breach of its computer systems in March 2017, and that in early March it started to notify a small number of outsiders and banking customers about this attack. The accident was reported to victims but wasn't fixed quickly enough. The much more serious data breaches in following months are believed through the same route.
C. May–July Breaches: This is the worst credit data leakage in history. On Sept 7 2017, Equifax announced the cyber identity theft which potentially would impact approximately 140+ million U.S. consumers. The other main points are:
D: 2017 exposure of Argentinian consumer data: In September 2017, a password accident took place at an Argentinian arm of Equifax, which exposed 14K customers and 100 staff members' private data to anyone who entered "admin" as both the username and password for one online system.
E. 2017 vulnerable mobile apps On September 7, 2017, Equifax removed its official mobile apps from the Apple App Store and from Google Play because of security flaws. These flaws had no matter with early big data breach, but were vulnerable owing to some parts using HTTP instead of HTTPS.
F. 2017 exposure of American salary data On October 8, 2017, The Work Number, a website operated by Equifax, exposed the salary histories of tens of thousands of US companies to anyone in possession of the employee's SSN and date of birth.