Finally, some good news related to Equifax and all the nonsense surrounding the breach and the federal government’s reaction to it.
And the hits keep coming…
If you have worked with a larger corporation that has engaged in business with Equifax, the news in this article should not come as a surprise. These data feeds have always had a fear factor associated with them, but some solace came with the notion that Equifax was carefully securing the data on the back end. I believe they were taking great care at one point, but that process degraded over time as the organization grew and the data was more heavily monetized.
A no bid contract….post breach….post Congressional hearing….I simply have no words….
This is a good update/recap of the current Equifax situation from Mr. Krebs. Enjoy!
Now both our personal data and our financial data may be compromised by the Equifax breach! Yea!
So exactly how important is patch management in an organization? How important is protecting architectural knowledge? Oh yeah…
I don’t believe any proof of blame will be uncovered in the short term concerning the Equifax breach, though plenty of fingers will be pointed in a variety of directions. It will take time and sound forensic analysis before we really know the truth. The following are a few more recent articles detailing more of the what/when/how/why of this situation:
This is sound advice in the face of this breach.
I have spoken about this process in the past, but in light of the recent Equifax breach, this advice is once again both timely and sound. Here are a couple of great links to help you better understand the process.
I am including links to several articles surrounding the Equifax breach, and I cannot stress enough the magnitude of this breach based on the extremely sensitivity of the data hosted at Equifax. Please be diligent in your credit monitoring practices. Strongly consider freezing your credit through all three major bureaus to protect against identity theft. Please take this breach seriously.