【】
我要评论Equifax was hacked this past summer. You already know this. However, according to a new report, the company's computer systems were alsoallegedly broken into in March. And here's the kicker: The same crew might be responsible for both incidents.
That's right, the same culprits behind the theft of personal information on potentially 143 million Americans might have been poking around in Equifax's databases months earlier.
SEE ALSO:Alleged Equifax hackers demand $2.6 million Bitcoin ransom — or else...The news comes to us via Bloomberg, which notes that "three people familiar with the situation" told the publication about the alleged March intrusion. One of those three people claim "the breaches involve the same intruders."
And it's not like Equifax didn't know about it at the time. As Bloombergreports, the company hired a cybersecurity firm to investigate the March breach. But wait, it gets worse.
That potentially the same hackers may have been able to return to Equifax's systems to pilfer massive amounts of information is especially baffling considering the vulnerability the hackers reportedly used in the more recent breach was known in March, according to Bloomberg.
However, the problem wasn't fixed until the second hack was detected in July, the publication reports. That massive hack took place between May and July.
"We know that criminals exploited a US website application vulnerability," a company spokesperson wrote on September 15. "The vulnerability was Apache Struts CVE-2017-5638."
Again, that Apache Struts vulnerability was reportedly known in March — meaning the company could very likely have prevented the incident later announced on September 7. The company was aware it had been breached and had the tools to fix a major problem with its site. And yet.
In a statement to Bloomberg, however, Equifax claimed that the two hacks were unrelated. Meanwhile, The Wall Street Journalcites an unnamed source "familiar with the investigation" as saying that it looks like the hack was probably state-sponsored. No information was provided to back up that claim.
This revelation will surely complicate matters for the Equifax executives who sold close to $2 million in stock before the public was alerted to the breach. The Senate Finance Committee is looking into the matter.
Featured Video For You
Get the multipass powerup in this ‘Fifth Element’ 16-bit short
TopicsCybersecurity
相关文章
This German startup wants to be your bank (without being a bank)
BERLIN -- “That is f*cking clever,” said Ben Floyd, 33, as we sat in a trendy cafe in Be2025-04-04
'You're the Worst' is coming back for Season 4
Prepare yourself for another season of trash juice, self-loathing and questionable life choices: You2025-04-04
What a spectacular mess, Yahoo. At least 500 million accounts across your myriad services have been2025-04-04
The Winklevoss twins want to make Bitcoin more mainstream with daily auctions
Gemini Trust Co., the U.S.-based digital-currency exchange founded by entrepreneurs Cameron and Tyle2025-04-04These glasses hide a fitness tracker on your face
The last time a company tried popularizing wearable tech embedded in glasses, most notably with Goog2025-04-04
Bob Bradley finally gets his shot, an American will manage a Premier League team for first time
The English Premier League historically represents the pinnacle of professional men's soccer. Americ2025-04-04
最新评论