Equifax may have been hacked again

Equifax’s Web site has been hacked again, and made to redirect to site serving adware masquerading as an Adobe Flash update.

The discovery was made by security researcher Randy Abrams, who was trying to find his credit report on the Equifax website and triggered the redirection by clicking on a link. He was redirected to hxxp:centerbluray.info and was met with a Flash download when he went to equifax.com to contest a false info on his credit report.

The fake Flash installer apparently tricks people into downloading what Symantec identifies as Adware.Eorezo, an adware that inundates Internet Explorer with advertisements.

There has been no comment from Equifax on this latest incident, and it is unknown whether the redirect code has been scrubbed by them or by the hackers who put it there in the first place.

 

%d bloggers like this: