Register with us for free to get unlimited news, dedicated newsletters, and access to 5 exclusive Premium articles designed to help you stay in the know.
Join the UK's leading credit and lending community in less than 60 seconds.
Equifax’s chief information officer and chief security officer have resigned, as part of senior management changes in the aftermath of a cyber attack.
Group Editor
David Webb and Susan Mauldin have left their information and security roles immediately, while Equifax has appointed Mark Rohrwasser as interim chief information officer. Rohrwasser has worked with the company since 2016, leading its IT operations.
Russ Ayres has also been appointed as interim chief security officer. His most recent role in the company was vice president of the IT organisation at Equifax. Ayres will report directly to Rohrwasser.
The announcement from Equifax, on September 15, also stated the company was aware of the vulnerability in its infrastructure that enabled the cyber attack to take place in March this year.
Equifax said it took efforts to identify and patch the vulnerabilities at that time, however this was not enough as the attacks are believed to have taken place between May 13 and July 30 2017.
The company said it became aware of suspicious traffic on its website on July 29. It then blocked this traffic before continuing to monitor the website when it noticed further suspicious activity on July 30. Equifax took the website offline that day.
Equifax realised the vulnerability it had previously discovered remained, it patched it up once more and put the website back online. It then hired a cyber security firm to conduct a forensic review of the intrusion.
The company’s internal investigation of the incident is still ongoing and it continues to work closely with the FBI in its investigation.
Get the latest industry news