Equifax – Page 2 – WindowsTechs.com

If hackers are exploiting the Log4j flaw, CISA says we might not know yet

Posted on January 10, 2022 by Tim Starks

Federal officials cautioned Monday that, while the widespread Log4j vulnerability hasn’t led to any major known intrusions in the U.S., there could be a “lag” between when the flaw became known, and when attackers exploit it. Cybersecurity and Infrastructure Security Agency Director Jen Easterly said that there were months between the discovery of the vulnerability that led to the 2017 Equifax breach, which exposed the personal information of nearly 150 million Americans, and word of the breach itself, invoking one of the most notable hacks in history. “We do expect Log4j to be used in intrusions well into the future,” Easterly said on a call with reporters. “There may be a lag between when this vulnerability is being used and when it is being actively deployed.” Apache Struts, an open-source tool, was at the center of the Equifax breach, and Apache’s Log4j is a ubiquitous open-source logging tool. Easterly said […]

The post If hackers are exploiting the Log4j flaw, CISA says we might not know yet appeared first on CyberScoop.

Continue reading If hackers are exploiting the Log4j flaw, CISA says we might not know yet→

FTC threatens “legal action” over unpatched Log4j and other vulns

Posted on January 5, 2022 by Paul Ducklin

Remember the Equifax breach? Remember the $700m penalty? In case you’d forgotten, here’s the FTC to refresh your memory! Continue reading FTC threatens “legal action” over unpatched Log4j and other vulns→

FTC warns of potential penalties for firms that fail to fix Log4j software flaws

Posted on January 4, 2022 by Tonya Riley

The Federal Trade Commission Tuesday warned companies that if they fail to take action to remedy a major recent software vulnerability in open-source software tool Log4j, there could be legal repercussions. “When vulnerabilities are discovered and exploited, it risks a loss or breach of personal information, financial loss, and other irreversible harms,” the agency warned. “It is critical that companies and their vendors relying on Log4j act now, in order to reduce the likelihood of harm to consumers, and to avoid FTC legal action.” Log4j is ubiquitous in software used throughout the technology industry, and is found in products built by companies including Amazon, Google and Microsoft. The widespread use of such technology has made it difficult to identify potential victims. At the same time, the popularity has made it an easy target for a range of cybercriminals to exploit. The warning shot from the top consumer protection agency comes […]

The post FTC warns of potential penalties for firms that fail to fix Log4j software flaws appeared first on CyberScoop.

Continue reading FTC warns of potential penalties for firms that fail to fix Log4j software flaws→

DataVisor partners with Equifax to enhance its behavior analytics and fraud detection solution

Posted on October 28, 2021 by Industry News

DataVisor announced a partnership with Equifax, making the global data, analytics and technology company its primary consumer identity data partner. DataVisor will enhance and extend its behavior analytics and fraud detection solution by combining rich… Continue reading DataVisor partners with Equifax to enhance its behavior analytics and fraud detection solution→

FTC wants to know when financial data is compromised, will require encryption

Posted on October 28, 2021 by Tonya Riley

The Federal Trade Commission is weighing updating its rules to require financial institutions to report within 30 days any security incidents in which misuse of customer data of at least 1,000 customers likely occurred. The information requested by the FTC under a proposal published Wednesday would include the name and contact information of an affected institution, the type of data involved in the event and the timeframe of the incident. The FTC notes that similar information is required under many state breach reporting laws, and that the FTC does not consider the information requested to be “confidential or proprietary.” The proposal adds to a list of agency actions putting privacy at the center of its enforcement agenda. Requiring breach notifications from financial institutions would give the lead consumer protection agency in the U.S. more information to bolster its oversight of an industry that increasingly is vacuuming up more consumer data. […]

The post FTC wants to know when financial data is compromised, will require encryption appeared first on CyberScoop.

Continue reading FTC wants to know when financial data is compromised, will require encryption→

Walter Hoffman joins Sontiq as Vice President of Public Sector Sales

Posted on October 25, 2021 by Industry News

Sontiq announced the addition of Walter Hoffman as Vice President of Public Sector Sales. An experienced public sector sales executive, Hoffman will help expand Sontiq’s work with government, education and other public sector entities around personal i… Continue reading Walter Hoffman joins Sontiq as Vice President of Public Sector Sales→

Neustar and Equifax release Financial Spectrum, an audience segmentation and media activation solution

Posted on July 2, 2021 by Industry News

Neustar and Equifax released Financial Spectrum, an audience segmentation and media activation solution designed to meet the unique demands of financial services marketers. Financial Spectrum offers asset-based customer segmentation to financial servic… Continue reading Neustar and Equifax release Financial Spectrum, an audience segmentation and media activation solution→

Intuit to Share Payroll Data from 1.4M Small Businesses With Equifax

Posted on July 1, 2021 by BrianKrebs

Financial services giant Intuit this week informed 1.4 million small businesses using its QuickBooks Online Payroll and Intuit Online Payroll products that their payroll information will be shared with big-three consumer credit bureau Equifax starting later this year unless customers opt out by the end of this month.

Intuit says the change is tied to an “exciting” and “free” new service that will let millions of small business employees get easy access to employment and income verification services when they wish to apply for a loan or line of credit. Continue reading Intuit to Share Payroll Data from 1.4M Small Businesses With Equifax→

Socure appoints Gary Sevounts as CMO

Posted on May 21, 2021 by Industry News

Socure announced the appointment of Gary Sevounts as its chief marketing officer (CMO). Sevounts, an award-winning marketer with more than 20 years of industry experience, brings an extensive marketing background in the areas of identity fraud, risk, a… Continue reading Socure appoints Gary Sevounts as CMO→

Fintech Startup Offers $500 for Payroll Passwords

Posted on May 10, 2021 by BrianKrebs

How much is your payroll data worth? Probably a lot more than you think. One financial startup that’s targeting the gig worker market is offering up to $500 to anyone willing to hand over the payroll account username and password given to them by their employer, plus a regular payment for each month afterwards in which those credentials still work. Continue reading Fintech Startup Offers $500 for Payroll Passwords→