Enlarge / A monitor displays Equifax Inc. signage on the floor of the New York Stock Exchange (NYSE) in New York on Friday, September 15, 2017. (credit: Michael Nagle/Bloomberg via Getty Images ) A series of costly delays and crucial errors caused Equifax to remain unprotected for months against one of the most severe Web application vulnerabilities in years, the former CEO for the credit reporting service said in written testimony investigating the massive breach that exposed sensitive data for as many as 143 million US Consumers . Chief among the failures: an Equifax e-mail directing administrators to patch a critical vulnerability in the open source Apache Struts Web application framework went unheeded, despite a two-day deadline to comply. Equifax also waited a week to scan its network for apps that remained vulnerable. Even then, the delayed scan failed to detect that the code-execution flaw still resided in a section of the sprawling Equifax site that allows consumers to dispute information they believe is incorrect. Equifax said last month that the still-unidentified attackers gained an initial hold in the network by exploiting the critical Apache Struts vulnerability . “We at Equifax clearly understood that the collection of American consumer information and data carries with it enormous responsibility to protect that data,” Smith wrote in testimony provided to the US House Subcommittee on Digital Commerce and Consumer Protection . “We did not live up to that responsibility.” Read 6 remaining paragraphs | Comments
Taken from:
A series of delays and major errors led to massive Equifax breach
New submitter threc shares a report from MIT Technology Review: The tech world descended on Washington, D.C. yesterday to attend a tech summit at the White House. According to MIT Technology Review associate editor Jamie Condliffe: “Trump suggested he might relax his stance on immigration as a way to get tech leaders to help his cause. ‘You can get the people you want, ‘ he told the assembled CEOs. That sweetener may be a response to a very vocal backlash in the tech world against the administration’s recent travel bans. Trump may hope that his business-friendly stance will offer enough allure: if tech giants scratch his back, he may later deign to scratch theirs.” The report continues: “‘Our goal is to lead a sweeping transformation of the federal government’s technology that will deliver dramatically better services for citizens, ‘ said Trump at the start of his meeting with the CEOs, according to the Washington Post. ‘We’re embracing big change, bold thinking, and outsider perspectives.’ The headline announcement from the event was Trump’s promise to overhaul creaking government computing infrastructure. According to Jared Kushner, the president’s son-in-law and advisor, there’s much to be done: federal agencies have over 6, 000 data centers that could be consolidated, for instance, while the 10 oldest networks in use by the government are all at least 39 years old. The upgrade, said Trump, could save the country $1 trillion over the next 10 years.” Read more of this story at Slashdot. 
An anonymous reader shares a report: Amazon’s advertising business has loomed quietly in the digital media space for some time but the online behemoth has given the clearest indication yet that it will now come to the fore. Advertisers and agencies have been hearing Amazon-sized footsteps for some time but until now the business has erred away from revealing too much. However, on its latest earnings call Amazon was asked by one analyst as to whether advertising could become a more “meaningful part of the business” over the near to mid-term. “It’s pretty early in the days with advertising but we’re very pleased with the team we have and the results, ” said Amazon’s chief financial officer Brian Olsavsky in response to another analyst query. “Our goal is to be helpful to consumers and enhance their shopping or their viewing experience with targeted recommendations, and we think a lot of the information we have and preferences of customers and recommendations help us do that for customers.” Read more of this story at Slashdot.