Equifax, the credit standing reporting company that uncovered private information of practically 150 million individuals, seems to have been hacked — once more.
The (possible) hack was seen by safety researcher Randy Abrams and first lined by Ars Technica. Whereas visiting Equifax’s web site, Abrams seen that some pages redirect to a web site providing a faux, malware-bearing Flash replace.
Hijacking some pages on a hacked web site to focus on guests is a typical tactic amongst malicious hackers. Typically, you will not see the malware-infested hyperlinks on each web page, and nothing else on the positioning will point out that one thing’s incorrect. However click on on the hyperlink, and growth — your laptop is contaminated.
Abrams was in a position to reproduce the habits a number of extra instances, and even took a video (under).
I used to be unable to breed this habits in a number of browsers and from a number of IP addresses on my laptop, and based on Ars Technica, Abrams, too, did not see it in latest visits to the positioning. It is attainable that Equifax took again management of the positioning, or that the hackers eliminated or modified the malicious code on the positioning.
If Equifax’s web site was actually compromised by hackers, it is simply including insult to damage for the completely embarrassed firm. The primary breach, introduced Sept. 7, allowed hackers to get away with private info, together with social safety numbers, of 145.5 million Americans. “We proceed to take quite a few steps to evaluation and improve our cybersecurity practices,” interim CEO Paulino do Rego Barros, Jr. stated within the unique press release.
We have contacted Equifax for remark however have not but heard from them.