15 September, 2017
In its earlier statements, Equifax had only revealed that it became aware of the breach on July 29, but didn't share exactly when the security breach had occurred. Shares of rival Experian Plc, which trade in London, dropped as much as 6.4 percent on Thursday. "However, in light of the intense public interest and the potential impact of this matter, I can confirm that FTC staff is investigating the Equifax data breach", spokesman Peter Kaplan said in a brief email statement.
The organization says it has been trying since the first reports of the Equifax breach surfaced to determine if it affects any of the approximately 10,000 CAA members who signed up for the program.
"We are informing the affected members that the data they shared with Equifax may have been compromised, and are writing Canada's Office of the Privacy Commissioner to express our concern about this breach and to ask that they push Equifax to provide more information to Canadians". Equifax announced that data of 143 million American consumers may have been compromised, including names, Social Security numbers, birth dates, addresses, driver's license numbers and credit card numbers.
In an updated statement released today, the PMC said that after Equifax confirmed that "the vulnerability was Apache Struts CVE-2017-5638" on 13 September 2017", but followed this saying: "this vulnerability was patched on 7 March 2017, the same day it was announced.
Apple's iTunes removes iOS App Store from desktop version
Downloading and installing iTunes 12.7 should only take a few minutes, but this will depend on the user's internet speed. When you swipe up, you'll no longer see the half-screen block with a handful of connectivity and utility options .
But security professionals say many companies take weeks or even months to apply software patches, as applications need to be tested to ensure the updates don't break existing code. But a delay of several months to remove a high-priority vulnerability is generally considered a unsafe security practice.
More recently, Equifax's cybersecurity has come under fire.
Krebs contacted Equifax about the issue, and the company quickly took the portal offline and launched an investigation. The company hasn't specified when it sought to patch the flaw, or what other mechanisms the attackers used once inside the network to access the consumer data.
The patch would have been time consuming as it involved rebuilding hundreds of apps using the new updated software. "We have a data breach, we're not in too good a shape out of that, right?" We pride ourselves on being a leader in managing and protecting data, and we are conducting a thorough review of our overall security operations'.