Equifax says code on its website ‘was serving malicious content’ – Los Angeles Times

Equifax Inc. took part of its website offline Thursday after code on the site redirected users to a malicious URL urging them to download malware.

Also Thursday, a top Republican congressman introduced a bill that would stop credit reporting companies such as Equifax from using Social Security numbers to verify Americans’ identities.

The moves come a month after Equifax revealed that a data breach exposed the Social Security numbers and birthdates of as many as 145.5 million Americans. That hack took place after Equifax failed for several months to fix a software flaw that federal officials had warned about in March.

Late Wednesday night, independent security analyst Randy Abrams said in a blog post that while he was trying to download his credit report from the Equifax site, he clicked a link that kicked him to a third-party website with “one of the ubiquitous fake Flash Player Update screens.” His post was first reported by technology news site Ars Technica.

Equifax says code on its website ‘was serving malicious content’ – Los Angeles Times

Leave a Reply

Your email address will not be published.