Equifax -2.8%, investigating another possible data breach

Joanna Estrada
October 12, 2017

Reuters reports (http://reut.rs/2wQnigR) the credit reporting agency has taken one of its customers help web pages offline as it investigates another potential breach.

The assistance page, which could be used to obtain a copy of one's credit report, was replaced with a message claiming that the site was under maintenance after security researcher Randy Abrams discovered the problem.

Once clicked, the phony Flash reportedly downloads adware onto the user's computer that fills their internet browser with ads.

The Flash "update" was actually a file called MediaDownloaderIron.exe, which was infected with Adware.Eorezo, an adware program that only sounds alarms on three of the leading virus scanners.

Equifax - whose multimillionaire CEO made a decision to set sail from the company weeks after the announcement that, under his watch, the information of 143 million Americans was obtained by hackers - was sending visitors of its website to the completely bogus software update.

The senator argued that although Smith responded to her September 15 letter and addressed lawmakers at an October 4 Senate Banking Committee hearing, she still has "numerous questions about the Equifax breach, the company's failure to prevent it and the company's decisions in the aftermath of the breach".

The latest reports of a hack also come on the heels of the Equifax signing a multi-million dollar deal with the IRS to assist with taxpayer and personal identity verification services.

The embattled company remains under heavy scrutiny after waiting almost four months to publicly announce that they had been hacked.

Other reports by Click Lancashire

Discuss This Article

FOLLOW OUR NEWSPAPER