Now Playing
KISS104 FM
On Air
No Program
Now Playing
KISS104 FM

Posted: September 14, 2017

Equifax, software maker blame each other for opening door to hackers


Related

By Russell Grantham, The Atlanta Journal-Constitution

Equifax and a software company are blaming each other for a glitch that allowed hackers to obtain Social Security numbers and other sensitive information for 143 million people.

>> Read more trending news

The Atlanta-based company, one of the nation’s three key credit bureaus that track individuals’ credit histories, said late Wednesday that hackers breached a vulnerable spot in a U.S. website application called Apache Struts CVE-2017-5638. Equifax disclosed last week that it discovered in July that hackers had tapped a large trove of personal data on most adults in America.

>> Related: Federal probe launched after Equifax data breach

But in a statement Thursday, Apache Software Foundation, which provides the application, said it provided and announced a patch for the software fault on March 7, well before Equifax said the security breach began in mid-May.

“In conclusion, the Equifax data compromise was due to their failure to install the security updates provided in a timely manner,” the foundation said.

>> Related: Equifax cyberattack: What to know

The 18-year-old foundation said it is an all-volunteer organization that produced open-source Java applications for government and business users, including Fortune 100 companies.

Equifax couldn’t be reached immediately for a response to Apache Software Foundation’s statement.


There are no comments yet. Be the first to post your thoughts. or Register.