Equifax had ‘admin’ as login and password in Argentina!
Researchers from US company Hold Security exploring Equifax following its dark hack that exposed specifics of 143 mln clients have stated its Argentine arm can also be easily hackable.
An employee portal called Veraz gave investigators, who typed admin/admin since the username and password, access to private information of 111 workers.
A additional page comprised 715 complaints from clients dating back years, each with social security numbers in plain text.
All that has been protecting the sensitive private information was that which Hold security adviser Brian Krebs known as “possibly the very easy-to-guess password mix ever.”
“To mepersonally, this really is only negligence,” creator Alex Holden added.
“In this scenario, their way to safety was only abysmal, and it is difficult to trust the remainder of their surgeries are far better.”
Krebs meanwhile described the company as “cluttered” as agents took the offending portal site offline.
Cointelegraph reported that the giant information theft had happened several months back but just came to light six months later as officials sought to keep the problem in check.
Another question is presently ongoing regarding three shareholders that offered $18 mln worth of shares between the date of this hack discovery as well as the general disclosure.