Equifax denies its website was hacked again, blames vendor

Equifax denies its website was hacked again, blames vendor

Equifax denies its website was hacked again, blames vendor

The company said the problem is in its credit report assistance link on its website.

Equifax said that, out of an abundance of caution, the Atlanta company has taken the affected page offline, and it's looking into the matter.

Independent security analyst Randy Abrams claims that the company's website was compromised for several hours on October 11 and was redirecting customers to a fake Adobe Flash update download.

The confirmation that Equifax allowed compromised software on its website is the latest embarrassment for the company.

South Africa's T20 Global League Postponed Until November 2018
Last Friday, Moroe had insisted that the tournament would go ahead as planned. "We will start on November 3 as promised". However, after lots of questions arose about the tournament, pressure mounted on the former CEO.

"We are aware of the situation identified on the equifax.com website in the credit report assistance link", an Equifax spokesperson said in an email. But lawmakers and several federal agencies, including the FBI and the Federal Trade Commission, are investigating the company's response to the breach, why it took Equifax more than a month to notify the public and whether executives engaged in insider trading.

Money expert Clark Howard says rather than waiting on Equifax to get itself together, consumers should be proactive and do what they can to protect themselves from identity fraud.

In early October, Equifax revised the number of consumers potentially impacted in the breach - bumping up the total in the U.S.to 145.5 million and reducing the number in Canada from an estimated 100,000 to 8,000.

On Thursday, Ars Technica reported that security analyst Randy Abrams was prompted to download fraudulent Adobe Flash updates when he visited the Equifax website to contest his credit report. The United States Computer Readiness team detected and disclosed the vulnerability in March, and Equifax "took efforts to identify and to patch any vulnerable systems in the company's IT infrastructure".

Related news