The Song Remains The Same: A Story of Unencrypted Data, A 50-year-old Web infrastructure, A Lack of Patching And Certificate Time-outs

And so in the week that identified that an outage of the O2 was due to an out-of-date digital certificate, we hear of the poor security regime within Equifax.

A report from the House Oversight Committee defines that Equifax was riddled with security problems, including: having old systems; failing to properly monitor their security infrastructure (due to an expired digital certificate); and had a lack of patch management.

The breach affected over 143 million customers, but the company, so far, has not faced any significant fines.

Equifax’s CEO at the time was Richard Smith, and who has since retired from the company. At the time of the breach, Richard blamed his IT staff for falling to patch their systems, but the report reveals that their infrastructure was riddled with security problems and a general lack of investment in security.

Along with this the report defines many problems within Equifax’s data infrastructure, including continual crashes, and incorrect results showing…