BREAKING: Equifax Says Cyberattack May Have Affected 143 Million Customers - Via The New York Times

Yesterday, breaking news appeared throughout all media outlets--According to an article in The New York Times, by reporters, Tara Siegel Bernard, Tiffany Hsu, Nicole Perlroth and Ron Liebersept, "Equifax Says Cyberattack May Have Affected 143 Million Customers."

(Photo: Hackers stole credit card numbers for 209,000 consumers, Equifax said. Credit Katherine Taylor for The New York Times.)

According to the NYT, "Equifax, one of the three major consumer credit reporting agencies, said on Thursday that hackers had gained access to company data that potentially compromised sensitive information for 143 million American consumers, including Social Security numbers and driver’s license numbers." Moreover, "The attack on the company represents one of the largest risks to personally sensitive information in recent years, and is the third major cybersecurity threat for the agency since 2015."

An ominous statement appeared in the article: “'This is about as bad as it gets,' said Pamela Dixon, executive director of the World Privacy Forum, a nonprofit research group. 'If you have a credit report, chances are you may be in this breach. The chances are much better than 50 percent.'”

An investigation by IT security experts and by Equifax's own team found that from, "mid-May to July... a weak point in website software," was exploited, and Equifax, "discovered the intrusion on July 29," but, according to the NYT article, "has since found no evidence of unauthorized activity on its main consumer or commercial credit reporting databases."

“'Equifax should have multiple layers of controls' so if hackers manage to break in, they can at least be stopped before they do too much damage," according to a Gartner analyst; this as, "Major website breaches seem ever more frequent." A broad spectrum of professionals from the financial, technology, oversight and government sectors, including Virginia Senator, Mark Warner, "who co-founded the Senate Cybersecurity Caucus", have, the article states, "criticized Equifax on Thursday for not improving its security practices after those previous thefts, and they noted that thieves were able to get the company’s crown jewels through a simple website vulnerability."

(Content Copyright © The New York Times Company. All Rights Reserved.)


Derive Technologies partners with global leaders in IT Security -- from the data center and cloud to every endpoint -- including Hewlett Packard Enterprise (HPE), HP, Inc., Cisco, Microsoft, Citrix, VMware, Apple, Lenovo, and numerous others, including industry-specific solution providers in Financial Services, Healthcare, Government/Public Sector, Education, and other Professional Services. Derive is currently working with these partners to offer a series of proactive web, data, access point, wireless, system and other Security programs to defend against cyberterrorism, cyberattacks and other major vulnerabilities.

Contact Derive

Please contact a Derive Security Specialist to learn more. You may call (212) 363-1111, or complete the form on this page (please include "Derive Cyberdefense" in the form's comments). Derive is continuing to monitor the Equifax story and is in-conference with our clients, prospective clients, and our alliance partners, including technology providers and distributors, to quickly prevent, and respond to breaches and threats.