How many ways did Equifax fail at cybersecurity?
A new report, issued by the office of U.S. Senator Elizabeth Warren, comes with pages of citations and six specific ways Equifax failed to secure the data of 145 million Americans.
Take a look at the list and score how your company compares in these areas.
Report: 6 ways Equifax failed at Cybersecurity
The U.S. Senate report says, "Equifax set up a flawed system to prevent and mitigate data security problems."
Here are the bullet points.
- Equifax had "Feeble monitoring of endpoint and email security"
- Equifax "Retained sensitive consumer information on easily accessible systems"
- Equifax had "Weak network segmentation"
- Equifax had "Inadequate Credentialing"
- Equifax "Neglected the use of robust logging techniques that could have allowed the company to expel the hackers from their systems"
You can read the new report on Equifax cybersecurity failures here, and we also suggest reading the day-by-day timeline of the Equifax breach, as told by the former CEO of Equifax.
Does it seem fair to hammer Equifax on the six points above—or could these things be said about most companies and their security programs?
