【】
我要评论Equifax was hacked this past summer. You already know this. However, according to a new report, the company's computer systems were alsoallegedly broken into in March. And here's the kicker: The same crew might be responsible for both incidents.
That's right, the same culprits behind the theft of personal information on potentially 143 million Americans might have been poking around in Equifax's databases months earlier.
SEE ALSO:Alleged Equifax hackers demand $2.6 million Bitcoin ransom — or else...The news comes to us via Bloomberg, which notes that "three people familiar with the situation" told the publication about the alleged March intrusion. One of those three people claim "the breaches involve the same intruders."
And it's not like Equifax didn't know about it at the time. As Bloombergreports, the company hired a cybersecurity firm to investigate the March breach. But wait, it gets worse.
That potentially the same hackers may have been able to return to Equifax's systems to pilfer massive amounts of information is especially baffling considering the vulnerability the hackers reportedly used in the more recent breach was known in March, according to Bloomberg.
However, the problem wasn't fixed until the second hack was detected in July, the publication reports. That massive hack took place between May and July.
"We know that criminals exploited a US website application vulnerability," a company spokesperson wrote on September 15. "The vulnerability was Apache Struts CVE-2017-5638."
Again, that Apache Struts vulnerability was reportedly known in March — meaning the company could very likely have prevented the incident later announced on September 7. The company was aware it had been breached and had the tools to fix a major problem with its site. And yet.
In a statement to Bloomberg, however, Equifax claimed that the two hacks were unrelated. Meanwhile, The Wall Street Journalcites an unnamed source "familiar with the investigation" as saying that it looks like the hack was probably state-sponsored. No information was provided to back up that claim.
This revelation will surely complicate matters for the Equifax executives who sold close to $2 million in stock before the public was alerted to the breach. The Senate Finance Committee is looking into the matter.
Featured Video For You
Get the multipass powerup in this ‘Fifth Element’ 16-bit short
TopicsCybersecurity
相关文章
Over 82,000 evacuate as Blue Cut fire rapidly spreads in southern California
A rapidly spreading wildfire in southern California's Cajon Pass has grown in hot, dry weather, thre2025-07-07
Martin Shkreli ordered to pay his 'League of Legends' team's coach $25,000
UPDATE: Sept. 6, 2016, 2:11 p.m. EDT Nathani's attorney responded to Mashable's request for comment.2025-07-07
Adorable Japanese bunny bags make for the best kind of rabbit infestation
Want to fill your home with dozens of rabbits? No, no, hear us out — what if they were cute li2025-07-07
Kaepernick jersey sales skyrocket following controversy
Colin Kaepernick struck a chord when he sat in protest during the singing of the national anthem bef2025-07-07
Slack goes down again, prompting anxiety everywhere
Panic briefly took over on Tuesday when everyone's favorite messaging app/millstone went down tempor2025-07-07
Emoji you should never use during online dating
Emoji have become an important part of online dating, whether you're a sweetheart who sends 😍2025-07-07
最新评论