Key Equifax executives departing after huge data breach - Spokane, North Idaho News & Weather KHQ.com

Key Equifax executives departing after huge data breach

Posted: Updated:
NEW YORK, NY -

Equifax announced late Friday that its chief information officer and chief security officer would leave the company immediately, following the enormous breach of 143 million Americans' personal information.

The credit data company - under intense pressure since it disclosed last week that hackers accessed the Social Security numbers, birthdates and other information - also released a detailed, if still muddled, timeline of how it discovered and handled the breach.

Equifax said that Susan Mauldin, who had been the top security officer, and David Webb, the chief technology officer, are retiring. Mauldin, a college music major, had come under media scrutiny for her qualifications in security. Equifax did not say in its statement what retirement packages the executives would receive.

Mauldin is being replaced by Russ Ayers, an information technology executive inside Equifax. Webb is being replaced by Mark Rohrwasser, who most recently was in charge of Equifax's international technology operations.

Equifax also provided its most detailed timeline of the breach yet, although it raised as many questions as it answered.

The tale began on July 29, when the company's security team detected suspicious network traffic associated with the software that ran its U.S. online-dispute portal. After blocking that traffic, the company saw additional "suspicious activity" and took the portal's software offline.

At this point, Equifax's retelling grows cloudy. The company said an internal review then "discovered" a flaw in an open-source software package called Apache Struts used in the dispute portal, which it then fixed with a software patch. It subsequently brought the portal back online.

But that vulnerability had been known publicly since early March 2017, and a fix was available shortly thereafter - facts that Equifax acknowledged in its Friday statement. The company did not say why the software used in the online-dispute portal hadn't been patched earlier, although it claimed that its security organization was "aware" of the software flaw in March, and that it "took efforts" to locate and fix "any vulnerable systems in the company's IT infrastructure."

It apparently missed at least one vulnerable system. The closest Equifax gets to explaining that? "While Equifax fully understands the intense focus on patching efforts, the company's review of the facts is still ongoing," according to its statement.

After patching the dispute-portal's software, Equifax hired Mandiant, a computer-security firm, to do a forensic review. That effort determined that hackers had access to Equifax systems from May 13 through July 30.

Equifax has been castigated for how it has handled the breach, which it did not disclose publicly for weeks after discovering it.

Consumers calling the number Equifax set up initially complained of jammed phone lines and uninformed representatives, and initial responses from the website gave inconsistent responses. The company says it has addressed many of those problems. Equifax also said Friday it would continue to allow people to place credit freezes on their reports without a fee through Nov. 21. Originally the company offered fee-free credit freezes for 30 days after the incident.

Equifax is also facing several inquiries and class-action lawsuits, including Congressional investigations, queries by the Federal Trade Commission and the Consumer Financial Protection Bureau, as well as several state attorneys general. The company's CEO Richard Smith is scheduled to testify in front of Congress in early October.

Three Equifax executives - not the ones who are departing - sold shares worth a combined $1.8 million just a few days after the company discovered the breach, according to documents filed with securities regulators.

Equifax shares have lost a third of their value since it announced the breach.

___

AP Technology Editor David Hamilton in San Francisco contributed to this report.

(Copyright 2017 The Associated Press. All rights reserved. This material may not be published, broadcast, rewritten or redistributed.)

  • Most Popular StoriesMost Popular StoriesMore>>

  • EBT Cards And Social Security During Government Shutdown

    EBT Cards And Social Security During Government Shutdown

    Tuesday marks the eighth day of the government shutdown, and there's still no deal made on Capitol Hill.>>
    Tuesday marks the eighth day of the government shutdown, and there's still no deal made on Capitol Hill. Some federal employees are back to work but 500,000 are still furloughed. All non-essential government offices have been closed for a week now. But House Democrats and Republicans are still no closer to making a compromise.>>
  • The forgotten fallout shelter: An inside look underneath one of Spokane’s oldest buildings

    The forgotten fallout shelter: An inside look underneath one of Spokane’s oldest buildings

    Friday, January 19 2018 9:44 PM EST2018-01-20 02:44:17 GMT

    SPOKANE, Wash. - Cobwebs hang from the exposed pipes running along the ceiling of a dimly lit, dirty basement. The underground labyrinth is used as storage space at Mount Saint Michael’s Academy in Spokane. But several decades ago it served as a safe haven. During the Cold War, the Office of Civil Defense designated the basement at Saint Michael’s as one of hundreds of fallout shelters throughout the city. 

    >>

    SPOKANE, Wash. - Cobwebs hang from the exposed pipes running along the ceiling of a dimly lit, dirty basement. The underground labyrinth is used as storage space at Mount Saint Michael’s Academy in Spokane. But several decades ago it served as a safe haven. During the Cold War, the Office of Civil Defense designated the basement at Saint Michael’s as one of hundreds of fallout shelters throughout the city. 

    >>
  • The Latest: Government shutting down amid partisan standoff

    The Latest: Government shutting down amid partisan standoff

    Saturday, January 20 2018 12:54 AM EST2018-01-20 05:54:47 GMT

    WASHINGTON (AP) - The Latest on the budget battle in Congress (all times local): 12 midnight  The U.S. government shut down at midnight after Congress failed to resolve a partisan standoff over immigration and spending. In a late-night vote, Senate Democrats joined to block a bill that would have kept the government running for another four weeks. A flurry of last-minute negotiations failed to beat the deadline. Democrats have tried to use the F...

    >>

    WASHINGTON (AP) - The Latest on the budget battle in Congress (all times local): 12 midnight  The U.S. government shut down at midnight after Congress failed to resolve a partisan standoff over immigration and spending. In a late-night vote, Senate Democrats joined to block a bill that would have kept the government running for another four weeks. A flurry of last-minute negotiations failed to beat the deadline. Democrats have tried to use the F...

    >>
HD DOPPLER 6i
/
  • Top Stories from KHQHomeMore>>

  • Skater dies from injuries in Riverfront Park accident

    Skater dies from injuries in Riverfront Park accident

    Sunday, January 21 2018 12:11 AM EST2018-01-21 05:11:18 GMT

    SPOKANE, Wash. - City of Spokane Parks and Recreation officials confirmed Saturday night that a skater injured Friday at Riverfront Park has died from their injuries. The skater fell and was hurt, but additional details about the extent of the injuries were not available. “The City of Spokane is deeply saddened by this horrible tragedy. Our thoughts and prayers are with their family, and we send our deepest condolences,” said Mayor David Condon in a release Saturday.

    >>

    SPOKANE, Wash. - City of Spokane Parks and Recreation officials confirmed Saturday night that a skater injured Friday at Riverfront Park has died from their injuries. The skater fell and was hurt, but additional details about the extent of the injuries were not available. “The City of Spokane is deeply saddened by this horrible tragedy. Our thoughts and prayers are with their family, and we send our deepest condolences,” said Mayor David Condon in a release Saturday.

    >>
  • Scammers target Spokane Valley grandmother

    Scammers target Spokane Valley grandmother

    Saturday, January 20 2018 9:59 PM EST2018-01-21 02:59:02 GMT

    Spokane Valley, Wash. Karen Viszneki phone rings off the hook. Starting before the sun rises and even after she goes to bed. On a typical day, Karen will receive over 50 different phone calls from scammers. Karen Viszneki signed up with Career Builder a job search engine website in hopes to find a job. “There’s a lot of stress there, to begin with, but I applied on career builder, and since then I would say a week or two receiving nonstop calls," said Karen. The calls

    >>

    Spokane Valley, Wash. Karen Viszneki phone rings off the hook. Starting before the sun rises and even after she goes to bed. On a typical day, Karen will receive over 50 different phone calls from scammers. Karen Viszneki signed up with Career Builder a job search engine website in hopes to find a job. “There’s a lot of stress there, to begin with, but I applied on career builder, and since then I would say a week or two receiving nonstop calls," said Karen. The calls

    >>
  • Authorities say Washington teens used dead deer as bait to hunt eagles

    Authorities say Washington teens used dead deer as bait to hunt eagles

    Saturday, January 20 2018 9:24 PM EST2018-01-21 02:24:04 GMT

    KLICKITAT COUNTY, Wash. - The Washington Department of Fish and Wildlife Police say three teens in Klickitat County were using a dead deer to bait and shoot eagles last week.

    >>

    KLICKITAT COUNTY, Wash. - The Washington Department of Fish and Wildlife Police say three teens in Klickitat County were using a dead deer to bait and shoot eagles last week.

    >>