The Equifax breach – Now what?

By now we’re all probably very aware of the massive Equifax hack that exposed 143 million American’s social security numbers, birth dates, addresses and drivers’ licenses. There was also a small subset of credit cards and personal identifying documents released with limited personal information to an uncertain amount of Canadian and UK citizens being accessed as well. According to a statement released by Equifax the breach occurred from mid-May through July 2017. They discovered the breach on July 29th, which means attackers were actively working well over a month, if not more, at exhilarating this treasure trove of data. Equifax also stated that criminals exploited a vulnerability in their web application to gain access to sensitive data as the means of compromising their site

Here are a few of my thoughts on the Equifax breach: https://www.ccsinet.com/blog/equifax-breach-what-now/

Also, here’s my bald head on CBS news talking about it: http://newyork.cbslocal.com/2017/09/08/equifax-breach-fallout/amp/

*** This is a Security Bloggers Network syndicated blog from Frontline Sentinel authored by Matthew Pascucci. Read the original post at: http://www.frontlinesentinel.com/2017/09/the-equifax-breach-now-what.html

7 years ago

Matthew Pascucci

North American Developers Optimistic About Generative AI and Code Security
North American software developers have reasonable confidence that generative AI can be a tool to…
AI Adoption Prompts Security Advisory from NSA
The warning underscores the importance of a collaborative approach to AI security involving stakeholders across…
CoralRaider Group Delivers Three Infostealers via CDN Cache
The latest cyberthreat campaign by the threat actors is targeting victims around the world, Cisco's…

USENIX Security ’23 – Beyond Typosquatting: An In-depth Look at Package Confusion

Authors/Presenters: *Shradha Neupane, Grant Holmes, Elizabeth Wyss, Drew Davidson, Lorenzo De Carli Many thanks to USENIX for publishing their outstanding…

22 hours ago

Security Bloggers Network

Breaking Down Cybersecurity: The Real Meaning Behind the Jargon

What really is cyber security and why doesn't the traditional CIA triad of confidentiality, integrity, and availability work? And what's…

1 day ago

What is General Data Protection Regulation Act (GDPR)?

The widespread adoption of cloud services has introduced cybersecurity challenges and compliance complexities due to various privacy regulations in different…

1 day ago

Security Bloggers Network

RSAC 2024 Innovation Sandbox | Bedrock Security: A Seamless and Efficient Data Security Solution

The RSA Conference 2024 is set to kick off on May 6. Known as the “Oscars of Cybersecurity”, RSAC Innovation…

1 day ago

Security Bloggers Network

Cloud Monitor Automation Improves K-12 Cybersecurity Training & Awareness

Last week, we hosted Michael Tapia, Chief Technology Director at Clint ISD in Texas, and Kobe Brummet, Cybersecurity…

2 days ago

Security Bloggers Network

USENIX Security ’23 – UVSCAN: Detecting Third-Party Component Usage Violations in IoT Firmware

Authors/Presenters: Binbin Zhao, Shouling Ji, Xuhong Zhang, Yuan Tian, Qinying Wang, Yuwen Pu, Chenyang Lyu, Raheem Beyah Many thanks to…

2 days ago

The Equifax breach – Now what?

Related Post

Recent Posts

USENIX Security ’23 – Beyond Typosquatting: An In-depth Look at Package Confusion

Breaking Down Cybersecurity: The Real Meaning Behind the Jargon

What is General Data Protection Regulation Act (GDPR)?

RSAC 2024 Innovation Sandbox | Bedrock Security: A Seamless and Efficient Data Security Solution

Cloud Monitor Automation Improves K-12 Cybersecurity Training & Awareness

USENIX Security ’23 – UVSCAN: Detecting Third-Party Component Usage Violations in IoT Firmware