Economy

Equifax CSO and CIO leave after widespread data breach

Equifax CSO and CIO leave after widespread data breach”

The words "took efforts to identify and patch vulnerable systems" don't definitively say whether Struts was identified as vulnerable or whether an attempt was made to patch it.

Mark Rohrwasser, previously leader of its worldwide information technology operations, takes over as interim CIO, whilst Russ Ayres assumes the position of interim CSO.

Equifax said Tuesday that approximately 100,000 Canadian consumers may have had their personal information compromised in the massive cyberattack on the credit data company that was revealed this month.

Mark Rohrwasser, who previously headed Equifax's International IT operations, has now been appointed as the interim Chief Information Officer.

In a Friday statement, Equifax claimed it first noticed and started blocking "suspicious network traffic associated with its USA online dispute portal application" on July 29, before taking the app offline the following day.

However, the statement raises more questions than it answers.

"Having concluded the initial assessment Equifax has established that it is likely to need to contact fewer than 400,000 United Kingdom consumers in order to offer them appropriate advice and a range of services to help safeguard and reassure them", said the company in a statement to the press. It subsequently brought the portal back online. The specific vulnerability is CVE-2017-5638 which was patched by the Apache Struts project in March 2017.

Equifax CSO and CIO leave after widespread data breach

Equifax said it believes the access occurred from May 13 through July 30.

Equifax has been castigated for how it has handled the breach, which it did not disclose publicly for weeks after it was discovered.

That review is being conducted with security outfit Mandiant, which the new statement says was engaged on August 2nd.

Dan Panesar, VP EMEA, Certes Networks, said: "As the fall-out of the Equifax breaches continues, it is ever more apparent that not only is maintaining traditional approaches to cybersecurity an open invitation to hackers, but also that the mindset of most CIOs and CISOs needs to change". Originally the company offered fee-free credit freezes for 30 days after the incident.

Equifax is facing several class-action lawsuits, inquiries and Congressional investigations. The company's CEO Richard Smith is scheduled to testify in front of Congress in early October.

Three Equifax executives sold shares worth a combined $1.8 million just a few days after the company learned of the breach, according to documents filed with securities regulators.

Equifax has also announced that fewer than 400,000 United Kingdom consumers were affected by the breach and that it will be offering a range of services to help "safeguard and reassure them" from potential threats.



Like this

Latest


21 September 2017
President Trump's approval rating sees slight uptick
Trump also ticked up Tuesday to 39 percent in Gallup's daily tracking poll , his highest result in that survey since July. Forty percent of independents approve of the way Trump has handled the presidency, while 52 percent do not.

21 September 2017
Nisar takes dig at foreign ministry, says diplomacy is 24/7 task
He said Pakistan has more enemies in the world and less friends. "The drone strikes are unacceptable", he further remarked.

21 September 2017
McKesson Corporation (NYSE:MCK) Shorts Up 16.11% - Currently Trading Down
BidaskClub downgraded shares of McKesson Corporation from a "hold" rating to a "sell" rating in a report on Wednesday, August 9th. After $0.57 actual EPS reported by SEI Investments Company for the previous quarter, Wall Street now forecasts 0.00% EPS growth.

21 September 2017
Michigan State Police trooper dies injuries in motorcycle crash
Kriste Kibbey Etue, director of the MSP. "His loss will be felt throughout our state & my thoughts & prayers are with Tpr". O'Neill worked out of the Rockford post during his entire state police career.

21 September 2017
Facebook COO 'disgusted' by ad targeting tools, will add more human oversight
Chief Operating Officer Sheryl Sandberg said the social network operator will make reviews of its self-service advertising system more manual.

21 September 2017
Las Vegas Sands Corp. (LVS), Post Holdings, Inc
Ten research analysts have rated the stock with a hold rating and nine have assigned a buy rating to the company's stock. The consensus analyst target price is $65.62. "(LVS)" was first published by Week Herald and is owned by of Week Herald.

21 September 2017
Counter terror police make third arrest in Parsons Green 'bucket bomb' probe
Friend Alison Griffiths said the couple had an 18-year-old and a 22-year-old staying with them recently. Mrs Jones had been struggling with one of the children in their care, he added.

21 September 2017
GAME OF THRONES Prequel Series In the Works at HBO
Martin, developing another Game of Thrones spinoff series to add on to the four shows that were initially reported in July. According toEntertainment Weekly, Cogman is reportedly working closely with A Song of Ice and Fire author, George R.R.

21 September 2017
Donald Trump Says He Was 'Saddened' By 'Worst Ever' Emmy Ratings
The 69th Primetime Emmy Awards garnered 11.38 million viewers according to Deadline Hollywood - effectively tying the show's bleak 2016 ratings.

21 September 2017
Oliver, Olivia top Britain's baby name chart
While Oliver ranked top of the boys list and names like Muhammad, Charlotte and Willow all saw an increase in popularity. In July the top unisex baby names for boys and girls in the United Kingdom were revealed.



Recommended