I would really like to know how this happened. If it was because the data wasn’t encrypted (at rest and/or in motion) or that there wasn’t a 5-nines level quality program around data security, the entire management of Equifax should be fired. I don’t buy the line that hacking is inevitable. Businesses should be investing to protect data at levels commensurate with the value of the information they hold. And, there have been enough hacks that every business (and especially ones like Equifax (that hold extremely sensitive information) have little excuse for failures that result in private data being stolen. So, back to my opening question: How did this happen? Answering this question should be one of the things that companies who fail to protect our data should have to divulge.
New York Times—https://www.nytimes.com/2017/09/07/business/equifax-cyberattack.html?hp&action=click&pgtype=Homepage&clickSource=story-heading&module=first-column-region®ion=top-news&WT.nav=top-news&_r=0