Learn from the Equifax Data Breach to Protect Your Organization
Equifax said Thursday, 9/7/17, that 143 million people could be affected by a recent data breach in which cyber criminals stole information including names, Social Security numbers, birth dates, addresses, and the numbers of some driver’s licenses. Additionally, credit card numbers for about 209,000 people were exposed.
In July, Equifax discovered that hackers exploited a website application vulnerability to gain access to certain files and data. Upon discovery of the incident, Equifax hired a cyber security firm to perform forensics to determine the extent of the breach.
How to See If You Are Affected
Consumers can find out if they are potentially impacted by visiting www.equifaxsecurity2017.com, clicking on “Potential Impact,” and entering their last name and last 6 digits of their Social Security number.
In response, Equifax is providing free identity theft protection and credit file monitoring to all U.S. consumers, even if they are not impacted by this incident. This is a high cost and potentially major loss of revenue from otherwise paying customers.
Protecting your organization from security incidents and data breaches requires discipline, investment, and a mature security program. It requires a defense-in-depth model of protection across many areas. SWC organizes these areas as Governance, Risk Management, Security Awareness, Security Architecture, Security Operations and Business Continuity. If your organization is weak in any of these areas, your organization is at risk.
The root cause of the Equifax web app vulnerability is not yet known. SWC’s security practice has helped many customers proactively secure their Internet-facing web apps using our defense-in-depth method as well as improving all areas of security. Making proactive investments in information security will help your organization avoid major costs and brand degradation if a major security breach were to unfortunately occur.
If you are concerned about your organization’s security in the wake of the Equifax data breach, contact SWC today.