Thursday October 12, 2017

Equifax Website Hacked Again, Redirects to Fake Flash Update

It appears that Equifax’s website has been hacked again and made to redirect to site-serving adware masquerading as an Adobe Flash update: the fake Flash update conceals a file named MediaDownloaderIron.ex, which, according to VirusTotal, is detected as adware by only three AV solutions. For the moment, only Malwarebytes flags the URL of the site serving the adware as malicious.

Abrams encountered this malicious redirect on Wednesday evening, but multiple sources have since confirmed that it is no longer happening. There has been no comment from Equifax on this latest incident, and it is unknown whether the redirect code has been scrubbed by them or by the hackers who put it there in the first place. In any case, the fact that their Web site has no information on how to report security issues issues on it is another (unsurprising) weakness.

Discussion