clear
Sunday November 19th, 2017 1:01PM
8:34AM ( 4 hours ago ) Weather Alert

Former Equifax chairman apologizes for data breach

By The Associated Press

WASHINGTON (AP) — The former chairman and CEO of Equifax says the company was entrusted with the personal information of more than 140 million Americans and "we let them down" as human error and technology failures allowed a massive data breach.

In prepared congressional testimony, Richard F. Smith said the millions are not just numbers in a database, but friends, family, neighbors and members of his church. The revelation last month of the disastrous hack to Equifax's computer system rocked the company which faces several state and federal inquiries and several class-action lawsuits.

"To each and every person affected by this breach, I am deeply sorry that this occurred. Whether your personal identifying information was compromised, or you have had to deal with the uncertainty of determining whether or not your personal data may have been compromised, I sincerely apologize," Smith said. "The company failed to prevent sensitive information from falling into the hands of wrongdoers."

Smith, who resigned after overseeing the company for a dozen years, says Equifax was hacked by a yet-unknown entity. He said the information stolen included names, Social Security numbers, birth dates and addresses. In addition, the credit card information for about 209,000 consumers was also stolen as well as certain documents with personally identifying information for approximately 182,000 consumers.

Lawmakers are expected to question Smith on how the company allowed the breach to occur, why it took as long as it did to notify consumers and what's it's doing to help consumers protect themselves going forward. The House subcommittee holding the hearing has jurisdiction over e-commerce and consumer protection issues.

Smith said the Department of Homeland Security warned the company on March 8 about the need to patch a particular vulnerability in software used by Equifax and other business. The company disseminated that warning by email the next day and requested that applicable personnel install the upgrade. The company's policy requires the upgrade to occur within 48 hours, but Smith said that did not occur. The company's information security department also ran scans on March 15 that did not pick up the vulnerability.

"I understand that Equifax's investigation into these issues is ongoing," Smith said in the prepared remarks. "The company knows, however, that it was this unpatched vulnerability that allowed hackers to access personal identifying information."

Smith said it appears the first date the hackers accessed sensitive information was May 13. Between May 13 and July 30, there is evidence to suggest the attackers continued to access sensitive information, but it wasn't until July 29 that Equifax's security department observed suspicious network traffic. Smith said the hack was over the next day, but the hard work of figure out the impact was just beginning.

Smith said he was told of the suspicious activity on July 31 in a conversation with the company's chief information officer. He then provided a timeline of events that included a senior leadership team meeting on August 17 where he learned the forensic investigation has determined large volumes of consumer data had been compromised. He said the lead member of the company's board of directors was notified on August 22 and the full board two days later. He convened a board meeting to discuss the scale of the breach on Sept. 1.

Meanwhile, the company worked on a support package for consumers and then notified the public on Sept. 7.

Smith also said he was disappointed in the rollout of call centers and a website designed to help the people affected by the breach. He said the company has increased its number of customer service representatives and the website has been improved.

"Still, the rollout of these resources should have been far better, and I regret that the response exacerbated rather than alleviated matters for so many," Smith said in the prepared testimony.

Equifax said Monday that 2.5 million more Americans may have been affected by the breach of its systems, bringing the total to 145.5 million people.

___

On Twitter, reach Kevin Freking at https://twitter.com/APkfreking

  • Associated Categories: U.S. News, Associated Press (AP), AP National News, Top U.S. News short headlines, AP Online Headlines - Washington, AP Online Congress News, AP Business, AP Business - Consumer News, AP Business - Corporate News, AP Technology News
© Copyright 2017 AccessWDUN.com
All rights reserved. This material may not be published, broadcast, rewritten, or redistributed without permission.
US factory activity surges last month to highest since 2004
US manufacturing index rises to 60.8 last month, highest since September 2004
10:26AM ( 13 minutes ago )
Stella McCartney takes on the '80s at Paris Fashion Week
British-American designer McCartney slashed a bubblegum pink disco-debutante dress in taffeta at the bottom _ giving it a surreal shrunken effect _ and paired it with billowing pants that make the model's legs disappear
10:22AM ( 17 minutes ago )
Trump WH to point out efforts to undo Obama regulations
Trump WH point out his efforts to undo Obama regulations, including dozens of executive orders and other scaling-back on a range of issues, from immigration policy to campus sexual assault
10:19AM ( 20 minutes ago )
Associated Press (AP)
Roku cuts price on top streaming player to counter Apple TV
Roku cuts the price of its top TV-streaming player to counter Apple TV and fend off Amazon
9:05AM ( 1 hour ago )
The Latest: Thousands of Spanish police to stay in Catalonia
Spain's interior minister has lamented the hundreds of injuries linked to the Spanish police's crackdown on the Catalan independence referendum.
8:37AM ( 2 hours ago )
UK tries to bring home 110,000 travelers after airline fails
Troubled British carrier Monarch Airlines has suspended flights after failing to resolve its financial woes
8:24AM ( 2 hours ago )
AP Business
US factory activity surges last month to highest since 2004
US manufacturing index rises to 60.8 last month, highest since September 2004
10:26AM ( 14 minutes ago )
Stella McCartney takes on the '80s at Paris Fashion Week
British-American designer McCartney slashed a bubblegum pink disco-debutante dress in taffeta at the bottom _ giving it a surreal shrunken effect _ and paired it with billowing pants that make the model's legs disappear
10:22AM ( 17 minutes ago )
Trump WH to point out efforts to undo Obama regulations
Trump WH point out his efforts to undo Obama regulations, including dozens of executive orders and other scaling-back on a range of issues, from immigration policy to campus sexual assault
10:19AM ( 20 minutes ago )
The Latest: White House: Trump to speak on Vegas shooting
The White House says President Donald Trump will speak at 10:30 a.m. Eastern time about the mass shooting in Las Vegas
10:18AM ( 21 minutes ago )
Google drops "first click free," loathed by many publishers
Google ends "first click free," a policy loathed by publishers because it required a limited amount of free content before readers were subjected to a paywall
10:08AM ( 31 minutes ago )