Key Equifax executives departing after huge data breach - Spokane, North Idaho News & Weather KHQ.com

Key Equifax executives departing after huge data breach

Posted: Updated:
NEW YORK, NY -

Equifax announced late Friday that its chief information officer and chief security officer would leave the company immediately, following the enormous breach of 143 million Americans' personal information.

The credit data company - under intense pressure since it disclosed last week that hackers accessed the Social Security numbers, birthdates and other information - also released a detailed, if still muddled, timeline of how it discovered and handled the breach.

Equifax said that Susan Mauldin, who had been the top security officer, and David Webb, the chief technology officer, are retiring. Mauldin, a college music major, had come under media scrutiny for her qualifications in security. Equifax did not say in its statement what retirement packages the executives would receive.

Mauldin is being replaced by Russ Ayers, an information technology executive inside Equifax. Webb is being replaced by Mark Rohrwasser, who most recently was in charge of Equifax's international technology operations.

Equifax also provided its most detailed timeline of the breach yet, although it raised as many questions as it answered.

The tale began on July 29, when the company's security team detected suspicious network traffic associated with the software that ran its U.S. online-dispute portal. After blocking that traffic, the company saw additional "suspicious activity" and took the portal's software offline.

At this point, Equifax's retelling grows cloudy. The company said an internal review then "discovered" a flaw in an open-source software package called Apache Struts used in the dispute portal, which it then fixed with a software patch. It subsequently brought the portal back online.

But that vulnerability had been known publicly since early March 2017, and a fix was available shortly thereafter - facts that Equifax acknowledged in its Friday statement. The company did not say why the software used in the online-dispute portal hadn't been patched earlier, although it claimed that its security organization was "aware" of the software flaw in March, and that it "took efforts" to locate and fix "any vulnerable systems in the company's IT infrastructure."

It apparently missed at least one vulnerable system. The closest Equifax gets to explaining that? "While Equifax fully understands the intense focus on patching efforts, the company's review of the facts is still ongoing," according to its statement.

After patching the dispute-portal's software, Equifax hired Mandiant, a computer-security firm, to do a forensic review. That effort determined that hackers had access to Equifax systems from May 13 through July 30.

Equifax has been castigated for how it has handled the breach, which it did not disclose publicly for weeks after discovering it.

Consumers calling the number Equifax set up initially complained of jammed phone lines and uninformed representatives, and initial responses from the website gave inconsistent responses. The company says it has addressed many of those problems. Equifax also said Friday it would continue to allow people to place credit freezes on their reports without a fee through Nov. 21. Originally the company offered fee-free credit freezes for 30 days after the incident.

Equifax is also facing several inquiries and class-action lawsuits, including Congressional investigations, queries by the Federal Trade Commission and the Consumer Financial Protection Bureau, as well as several state attorneys general. The company's CEO Richard Smith is scheduled to testify in front of Congress in early October.

Three Equifax executives - not the ones who are departing - sold shares worth a combined $1.8 million just a few days after the company discovered the breach, according to documents filed with securities regulators.

Equifax shares have lost a third of their value since it announced the breach.

___

AP Technology Editor David Hamilton in San Francisco contributed to this report.

(Copyright 2017 The Associated Press. All rights reserved. This material may not be published, broadcast, rewritten or redistributed.)

  • Most Popular StoriesMost Popular StoriesMore>>

  • Spokane sex trafficking victim gets second chance as shop owner

    Spokane sex trafficking victim gets second chance as shop owner

    Tuesday, September 18 2018 8:42 PM EDT2018-09-19 00:42:17 GMT

    SPOKANE, Wash. - From the outside, the Repeat Boutique looks like a lot of other thrift shops in Spokane.  Inside, some might describe the stuff for sale as old, used, discarded garbage -- but store manager CJ Curtis sees its potential. And just like the goods in her shop, CJ is on her way to a new life, one far from the one she once lived. 

    >>

    SPOKANE, Wash. - From the outside, the Repeat Boutique looks like a lot of other thrift shops in Spokane.  Inside, some might describe the stuff for sale as old, used, discarded garbage -- but store manager CJ Curtis sees its potential. And just like the goods in her shop, CJ is on her way to a new life, one far from the one she once lived. 

    >>
  • Police impersonator attempts to pull over Spokane woman

    Police impersonator attempts to pull over Spokane woman

    Monday, September 17 2018 8:45 PM EDT2018-09-18 00:45:37 GMT

    SPOKANE, Wash. - "He told me to pull over, and my jaw just dropped," a Spokane woman, who says a fake police officer tried to pull her over, doesn't want to be named. In fear, this could happen again. "It really scared me and kind of threw me off that night. I don't even want to drive by myself anymore," she said. She tells me that she was driving around North Spokane at night on her way home from work. 

    >>

    SPOKANE, Wash. - "He told me to pull over, and my jaw just dropped," a Spokane woman, who says a fake police officer tried to pull her over, doesn't want to be named. In fear, this could happen again. "It really scared me and kind of threw me off that night. I don't even want to drive by myself anymore," she said. She tells me that she was driving around North Spokane at night on her way home from work. 

    >>
  • Tennessee boy shoots, kills mom's husband during fight

    Tennessee boy shoots, kills mom's husband during fight

    Wednesday, September 19 2018 10:52 AM EDT2018-09-19 14:52:53 GMT

    Authorities in eastern Tennessee say a 12-year-old boy shot and killed his mother's husband during a domestic dispute.    News outlets report 56-year-old Kevron Thomas "Tommy" Durham was shot twice with a rifle Saturday night. A release from District Attorney General Russell Johnson says authorities had received at least five previous calls from the home for domestic violence, although none resulted in criminal charges. 

    >>

    Authorities in eastern Tennessee say a 12-year-old boy shot and killed his mother's husband during a domestic dispute.    News outlets report 56-year-old Kevron Thomas "Tommy" Durham was shot twice with a rifle Saturday night. A release from District Attorney General Russell Johnson says authorities had received at least five previous calls from the home for domestic violence, although none resulted in criminal charges. 

    >>
HD DOPPLER 6i
/
  • Top Stories from KHQHomeMore>>

  • Freeman delivers care packages in remembrance of Strahan

    Freeman delivers care packages in remembrance of Strahan

    Wednesday, September 19 2018 9:48 PM EDT2018-09-20 01:48:08 GMT

    SPOKANE, Wash. - Freeman strong. It's been just past a year since a young man opened fire in Freeman High School, killing one student and injuring three others. In that time, students and staff have come a long way in healing and today was another step in that direction. Today, students worked to give back. 

    >>

    SPOKANE, Wash. - Freeman strong. It's been just past a year since a young man opened fire in Freeman High School, killing one student and injuring three others. In that time, students and staff have come a long way in healing and today was another step in that direction. Today, students worked to give back. 

    >>
  • WATCH LIVE: Town hall event with McMorris Rodgers, Brown

    WATCH LIVE: Town hall event with McMorris Rodgers, Brown

    Wednesday, September 19 2018 8:57 PM EDT2018-09-20 00:57:45 GMT

    SPOKANE, Wash. - Wednesday night KHQ and the Spokesman Review will host a town hall candidate forum with Rep. Cathy McMorris Rodgers, the top ranking female GOP member in the house, and her democratic rival, former state Sen. Lisa Brown.  Live coverage of the event will begin at 6 p.m. on KHQ, KHQ.com, and the KHQ app for your phone and TV. 

    >>

    SPOKANE, Wash. - Wednesday night KHQ and the Spokesman Review will host a town hall candidate forum with Rep. Cathy McMorris Rodgers, the top ranking female GOP member in the house, and her democratic rival, former state Sen. Lisa Brown.  Live coverage of the event will begin at 6 p.m. on KHQ, KHQ.com, and the KHQ app for your phone and TV. 

    >>
  • Honda Accord, Civic top list of most-stolen cars in Washington

    Honda Accord, Civic top list of most-stolen cars in Washington

    Wednesday, September 19 2018 8:57 PM EDT2018-09-20 00:57:30 GMT

    SPOKANE, Wash. - Is your car at a greater risk of being stolen? A new report shows the top ten cars in Washington that owners need to start taking extra precautions tonight. Washington may have dropped 6 percent in auto thefts this year, but from last September, to right now, over 1,200 cars have been reported stolen.

    >>

    SPOKANE, Wash. - Is your car at a greater risk of being stolen? A new report shows the top ten cars in Washington that owners need to start taking extra precautions tonight. Washington may have dropped 6 percent in auto thefts this year, but from last September, to right now, over 1,200 cars have been reported stolen.

    >>