No, honest, we’re fine, ‘Equihacks’ claims
Equifax shot down reports on Thursday that its site was hacked — saying it shut a page on its site after a third-party vendor was found to be “serving malicious content.”
It was unclear at press time if any visitors to the Equifax site were compromised.
“Despite early media reports, Equifax can confirm that its systems were not compromised,” Marisa Salcines, a spokeswoman for the company, said in a statement.
Earlier on Thursday, the tech Web site Ars Technica reported that the credit-monitoring company’s site may have been compromised, and showed how one visitor to a page on the site was directed to a fishy scam that used a fake Adobe Flash down- load prompt.
Soon after the report surfaced, the company took the Web page down.
“Since we learned of the issue, the vendor’s code was removed from the Web page, and we have taken the Web page offline to conduct further analysis,” Salcines said.
The confirmation that Equifax allowed compromised software on its Web site is the latest embarrassment for the company. Just last month Equifax announced that hackers broke into its servers and, over three months, stole the private data of 145.5 million customers.
Stolen data included Social Security numbers, addresses, credit card numbers, and, in some cases, driver’s license numbers.