BeyondTrust
  • Products
    Privileged Password Management
    Discover, manage, audit, and monitor privileged accounts
    Password Safe DevOps Secrets Safe
    Endpoint Privilege Management
    Manage privileges on Windows, Mac, Linux, and Unix endpoints
    Windows and Mac Unix and Linux Active Directory Bridge
    Secure Remote Access
    Centrally manage and secure remote access for service desks and vendors
    Remote Support Privileged Remote Access
    Use Cases and Industries
    See All Products
  • Resources

    Universal Privilege Management

    Our innovative Universal Privilege Management approach secures every user, asset, and session across your entire enterprise.

    Watch Video

    Learn

    Case Studies
    Competitor Comparisons
    Datasheets
    Glossary
    Product Demos
    Whitepapers

    Attend

    Events
    Go Beyond
    Training
    Webinars

    Support

    Changelog
    Professional Services
    Technical Documentation
  • Blog
  • Partners
  • Contact
  • Support
  • Services
  • Training
  • Events
  • Company

Credit firm Equifax sees 143 million personal details exposed in data breach

October 20, 2017

  • Blog
  • Archive

The credit monitoring company Equifax has revealed a breach exposed the personal details of up to 143 million Americans.

Equifax said in a statement that cyber criminals had accessed data such as Social Security numbers, birth dates, and addresses during the incident which is reported to have taken place between mid-May and the end of July.

Though technical details of the breach are unclear, Equifax said malicious hackers had won access to its systems by exploiting a website application vulnerability.

The news of this breach comes as another reminder about the dangers of poor security design and irregular testing. Too often companies focus on features and functions and layer security on as an afterthought, that must change. Hackers and cyber criminals can quickly exploit any flaw in a web application without too much trouble and from what I’ve seen this looks to be the case here.

Organizations must address these issues and re-focus on the security fundamentals. Basic security hygiene could have been enough to prevent a breach of this scale from happening. Security isn’t a one-time investment, it requires constant thought, attention, and action.

For those affected by this breach, it’s crucial that they stay vigilant. The details exposed in this incident are enough for a hacker to commit fraudulent acts and even steal personal identities.

Here’s a quick overview of what to watch out for:

  • Emails purporting to be from a known organization asking to confirm personal details or requesting username and password information
  • Ensure commonly used passwords are changed
  • If you’re ever unsure about an email, letter or phone call it’s always recommended to contact a company directly, by phone, to check it’s an authentic communication.

Andrew Avanessian,

Stay Up To Date

Get the latest news, ideas, and tactics from BeyondTrust. You may unsubscribe at any time.

I agree to receive product related communications from BeyondTrust as detailed in the Privacy Policy, and I may manage my preferences or withdraw my consent at any time.

You May Also Be Interested In:

Whitepapers

Mapping BeyondTrust Capabilities to NIST SP 800-207

Whitepapers

Mapping BeyondTrust Solutions to the Identity, Credential, and Access Management (ICAM) Architecture

Whitepapers

Four Key Ways Governments Can Prepare for the Growing Ransomware Threat

BeyondTrust Logo
  • Facebook
  • Twitter
  • LinkedIn

Keep up with BeyondTrust

I agree to receive product related communications from BeyondTrust as detailed in the Privacy Policy, and I may manage my preferences or withdraw my consent at any time.

Customer Support
Contact Sales

Products

  • Endpoint Privilege Management
  • Password Management
  • Privileged Remote Access
  • DevOps Secrets Safe
  • Remote Support

Resources

  • Blog
  • Case Studies
  • Competitor Comparisons
  • Datasheets
  • Glossary
  • Videos
  • Webcasts
  • Whitepapers

About

  • Company
  • Careers
  • Contact
  • Events
  • Leadership Team
  • Partner Program
  • Press

Languages

  • English
  • German
  • French
  • Spanish
  • Korean
  • Portuguese
  • Japanese
  • Privacy
  • Security
  • Manage Cookies
  • WEEE Compliance

Copyright © 1999 — 2020 BeyondTrust Corporation. All rights reserved. Other trademarks identified on this page are owned by their respective owners. BeyondTrust Corporation is not a chartered bank or trust company, or depository institution. It is not authorized to accept deposits or trust accounts and is not licensed or regulated by any state or federal banking authority.