Investing.com - Financial Markets Worldwide
Get 40% Off
Get 40% Off
🚨 Volatile Markets? Find Hidden Gems for Serious OutperformanceFind Stocks Now

Equifax says server first compromised on March 10

Published 09/21/2017, 12:19 AM
Updated 09/21/2017, 12:19 AM
© Reuters. Credit cards, a chain and an open padlock is seen in front of displayed Equifax logo in this illustration

By Jim Finkle

(Reuters) - Equifax Inc (NYSE:EFX) said on Wednesday that investigators had determined that an online dispute website at the heart of the theft of some 143 million consumer records was initially compromised by hackers on March 10, four months before the company noticed any suspicious activity.

It disclosed the findings after details of a report by cyber-security firm FireEye Inc that was sent to some Equifax customers were reported by the Wall Street Journal earlier on Wednesday.

The report, which was obtained by Reuters, described the techniques that the unknown attackers used to compromise Equifax, including exploitation of a vulnerability in a software known as Apache (NYSE:APA) Struts that was used to build the online dispute website.

It is not clear whether the March hackers were the same ones who later stole the vast cache of personal information. Equifax also said a previously reported incident in which some W-2 forms were compromised, also in March, was entirely unrelated.

The FireEye report said the firm was unable to determine who was behind the attack, and that it had never seen a hacking group employ the same tools, techniques and procedures as those used against Equifax.

A FireEye spokesman declined to comment on the report.

Equifax said in a statement to Reuters that a hacker "interacted with" the server on March 10, but that there was no evidence that the incident was related to the theft of sensitive consumer data that began in May.

The Wall Street Journal report said that hackers had roamed undetected inside Equifax's network for four months before the massive breach was detected in July by the company's security team. Equifax disputed that claim.

3rd party Ad. Not an offer or recommendation by Investing.com. See disclosure here or remove ads .

"There is no evidence that this probing or any other probing was related to the access to sensitive personal information" in the massive breach disclosed on Sept. 7, the company said in its statement.

Equifax shares have shed almost a third of their value since the disclosure of the breach. Critics have questioned why Equifax took so long to discover and disclose the breach.

One security expert who reviewed the FireEye report said that it was too soon to say whether the March 10 incident was related to the massive hack.

"They’ve had so much overlapping activity that it’s difficult to pick a single thread out of the noise," said the expert, who was not authorized to discuss details of the confidential report.

Latest comments

hilarious. equifax sorry, don't believe anything you say.
Install Our App
Risk Disclosure: Trading in financial instruments and/or cryptocurrencies involves high risks including the risk of losing some, or all, of your investment amount, and may not be suitable for all investors. Prices of cryptocurrencies are extremely volatile and may be affected by external factors such as financial, regulatory or political events. Trading on margin increases the financial risks.
Before deciding to trade in financial instrument or cryptocurrencies you should be fully informed of the risks and costs associated with trading the financial markets, carefully consider your investment objectives, level of experience, and risk appetite, and seek professional advice where needed.
Fusion Media would like to remind you that the data contained in this website is not necessarily real-time nor accurate. The data and prices on the website are not necessarily provided by any market or exchange, but may be provided by market makers, and so prices may not be accurate and may differ from the actual price at any given market, meaning prices are indicative and not appropriate for trading purposes. Fusion Media and any provider of the data contained in this website will not accept liability for any loss or damage as a result of your trading, or your reliance on the information contained within this website.
It is prohibited to use, store, reproduce, display, modify, transmit or distribute the data contained in this website without the explicit prior written permission of Fusion Media and/or the data provider. All intellectual property rights are reserved by the providers and/or the exchange providing the data contained in this website.
Fusion Media may be compensated by the advertisers that appear on the website, based on your interaction with the advertisements or advertisers.
© 2007-2024 - Fusion Media Limited. All Rights Reserved.