The irony of it all. Today’s New York Times calls out Equifax’s breach management program offered for sale to victimized companies; this unit existed before the current issue and is still available to companies that experience a breach.
-
As part of its pitch to clients, the company promised to safeguard information.
-
It even soldproducts to help companies hit by cyberattacks protect their customers.
And, in the “physician, heal thyself” department, the firm offers four services.
-
Quickly inform consumers, employees, and shareholders with pre-defined communications regarding the event and the steps you are taking on their behalf ;
-
Offer the appropriate level of identity theft protection products based on the risk profile of the data breach (ask about our Data Breach Risk Assessment Matrix);
-
Provide a dedicated Call Center to assist breached victims with product related questions after enrollment.
-
Place Fraud Alerts on consumers’ credit files at all three credit reporting agencies as requested.
What caught my eye, as Equifax points out in their collateral, are the five impacts of a breach, as they call it, with “serious implications”.
-
Erosion of employee customer trust
-
Decline in shareholder value
-
Undesirable publicity
-
Legal & regulatory liabilities
-
Out of budget expenses
This will certainly get ugly, inside and outside of Equifax.
-
Equifax now faces a consumer backlash over its response to the hacking attack.
-
The anger has been intensified by the actions of three senior executives who sold shares worth $1.8 million in the days after the breach was discovered. The stock, which had tripled in the last five years, is down 30 percent since the attack. Equifax said the executives were unaware of the breach when they sold their stock.
Overview by Brian Riley, Director, Credit Advisory Service at Mercator Advisory Group
Read the full story here
