Equifax, the credit rating reporting agency that exposed personal data of nearly 150 million people, appears to have been hacked — again.
The (probable) hack was noticed by security researcher Randy Abrams and first covered by Ars Technica. While visiting Equifax’s website, Abrams noticed that some pages redirect to a site offering a fake, malware-bearing Flash update.
Hijacking some pages on a hacked site to target visitors is a common tactic amongst malicious hackers. Often, you won’t see the malware-infested links on every page, and nothing else on the site will indicate that something’s wrong. But click on the link, and boom — your computer is infected.
Abrams was able to reproduce the behavior several more times, and even took a video (below).
I was unable to reproduce this behavior in several browsers and from several IP addresses on my computer, and according to Ars Technica, Abrams, too, didn’t see it in recent visits to the site. It’s possible that Equifax took back control of the site, or that the hackers removed or changed the malicious code on the site.
If Equifax’s site was really compromised by hackers, it’s just adding insult to injury for the thoroughly embarrassed company. The first breach, announced Sept. 7, allowed hackers to get away with personal information, including social security numbers, of 145.5 million Americans. “We continue to take numerous steps to review and enhance our cybersecurity practices,” interim CEO Paulino do Rego Barros, Jr. said in the original press release.
We’ve contacted Equifax for comment but haven’t yet heard from them.