Equifax Data Breach: A Costly Cyber Failure
CayceEvangelista1
24 views
11 slides
Mar 05, 2025
Slide 1 of 11
1
2
3
4
5
6
7
8
9
10
11
About This Presentation
This presentation explores the 2017 Equifax data breach, one of the largest cybersecurity incidents in history. It covers how hackers exploited vulnerabilities to steal personal data from 147 million consumers, the aftermath of the breach, regulatory responses, and key lessons in data security, risk...
Slide Content
By: Cayce Evangelista
EQUIFAX DATA
BREACH - 2017
EQUIFAX DATA
BREACH - 2017
Learning
Objectives
EQUIFAX
BACKGROUND
INFORMATION
STOLEN
WHAT HAPPENED
EXACTLY?
01
02
03
Objectives
EQUIFAX
BACKGROUND
INFORMATION
STOLEN
WHAT HAPPENED
EXACTLY?
01
02
03
01 - Background
Information
Equifax is the company in
charge of monitoring your
credit
In 2017 Equifax had a data
breach which impacted
around... 147,700,000 Million
People
Information
Equifax is the company in
charge of monitoring your
credit
In 2017 Equifax had a data
breach which impacted
around... 147,700,000 Million
People
02 - Information Stolen
Social Secuirty number
Customer's names
Addresses
Birthdates
Drivers license number
Credit card numbers
Source: https://epic.org/privacy/data-breach/equifax/
Social Secuirty number
Customer's names
Addresses
Birthdates
Drivers license number
Credit card numbers
Source: https://epic.org/privacy/data-breach/equifax/
March 7, 2017: The Apache Software foundation released patch for its
Struts 2 vulnerability
Struts 2 is a framework used by companies to create a java web
applications
This vulnerability allowed attackers to send a HTTP request with
malicious code tucked in the content-type header
This allowed strut 2 to be tricked into running the code and lead to
opening the sytem it was running
March 8, 2017: The united states computer emergency readiness Team
(US-CERT) warned about the apache software's struts 2 vulnerability
This warning was given for companies to addres it
If they did not, then a remote attack could explot it
03 - What Exactly Happened?
Source: https://us-cert.cisa.gov/ncas/current-activity/2017/03/08/Apache-Software-Foundation-Releases-Security-Updates
https://www.cnet.com/news/equifaxs-hack-one-year-later-a-look-back-at-how-it-happened-and-whats-changed/
Struts 2 vulnerability
Struts 2 is a framework used by companies to create a java web
applications
This vulnerability allowed attackers to send a HTTP request with
malicious code tucked in the content-type header
This allowed strut 2 to be tricked into running the code and lead to
opening the sytem it was running
March 8, 2017: The united states computer emergency readiness Team
(US-CERT) warned about the apache software's struts 2 vulnerability
This warning was given for companies to addres it
If they did not, then a remote attack could explot it
03 - What Exactly Happened?
Source: https://us-cert.cisa.gov/ncas/current-activity/2017/03/08/Apache-Software-Foundation-Releases-Security-Updates
https://www.cnet.com/news/equifaxs-hack-one-year-later-a-look-back-at-how-it-happened-and-whats-changed/
March 9, 2017: Equifax administrators were told to apply
patch but it wasn't done
March 10, 2017: Hackers were searching for servers that
contained this vulnerability and found Equifax's dispute portal
The hackers gained access to login credentials for 3 servers
May 13, 2017: Hackers began moving from these servers into
other parts of the network and taking data
With the credentials, they were able to access 48 more
servers
Continued...
Source: https://www.csoonline.com/article/3444488/equifax-data-breach-faq-what-happened-who-was-affected-what-
was-the-impact.html
patch but it wasn't done
March 10, 2017: Hackers were searching for servers that
contained this vulnerability and found Equifax's dispute portal
The hackers gained access to login credentials for 3 servers
May 13, 2017: Hackers began moving from these servers into
other parts of the network and taking data
With the credentials, they were able to access 48 more
servers
Continued...
Source: https://www.csoonline.com/article/3444488/equifax-data-breach-faq-what-happened-who-was-affected-what-
was-the-impact.html
Continued...
Until july 29, 2017: Hackers stole data
They stole the data by encrypting the data while moving it so they
would not be noticed
Equifax had tools that were used to decrypt analyze, and re-encrypt
network traffic using a public-key certificate
Equifax had failed to renew their certificate; the traffic wasn't getting
inspected
Only when they renewed it on this july 29, it is when they noticed
Septemberr 8, 2018: after internal investigation, the public was let know
of the breach
After the breach, no identity theft occurred as it is believed to be chinese
state-sponsoredhack
Source: https://www.csoonline.com/article/3444488/equifax-data-breach-faq-what-happened-who-was-affected-what-
was-the-impact.html
Until july 29, 2017: Hackers stole data
They stole the data by encrypting the data while moving it so they
would not be noticed
Equifax had tools that were used to decrypt analyze, and re-encrypt
network traffic using a public-key certificate
Equifax had failed to renew their certificate; the traffic wasn't getting
inspected
Only when they renewed it on this july 29, it is when they noticed
Septemberr 8, 2018: after internal investigation, the public was let know
of the breach
After the breach, no identity theft occurred as it is believed to be chinese
state-sponsoredhack
Source: https://www.csoonline.com/article/3444488/equifax-data-breach-faq-what-happened-who-was-affected-what-
was-the-impact.html
How Attackers Exploited Vulnerabilities in the 2017 Breach, Based on
Equifax Information
Equifax Information
Equifax stated that they implemented a
new endpoint security tool to find
misconfigurations, evaluate possible
signs of compromise, and automatically
notify system administrators of identified
vulnerabilities
Changes
Source: https://www.warren.senate.gov/imo/media/doc/2018.09.06%20GAO%20Equifax%20report.pdf
new endpoint security tool to find
misconfigurations, evaluate possible
signs of compromise, and automatically
notify system administrators of identified
vulnerabilities
Changes
Source: https://www.warren.senate.gov/imo/media/doc/2018.09.06%20GAO%20Equifax%20report.pdf
THANK YOU!!!
Download
Download Slideshow Get the original presentation fileQuick Actions
Statistics
- Views 24
- Slides 11
- Age 274 days
Related Slideshows
11
8-top-ai-courses-for-customer-support-representatives-in-2025.pptx
JeroenErne2
48 views
10
7-essential-ai-courses-for-call-center-supervisors-in-2025.pptx
JeroenErne2
47 views
13
25-essential-ai-courses-for-user-support-specialists-in-2025.pptx
JeroenErne2
37 views
11
8-essential-ai-courses-for-insurance-customer-service-representatives-in-2025.pptx
JeroenErne2
35 views
21
Know for Certain
DaveSinNM
23 views
17
PPT OPD LES 3ertt4t4tqqqe23e3e3rq2qq232.pptx
novasedanayoga46
26 views