• Home
  • Latest
  • Fortune 500
  • Finance
  • Tech
  • Leadership
  • Lifestyle
  • Rankings
  • Multimedia

Trendingnow

1

Ex-PepsiCo CEO Indra Nooyi worked from midnight until 5 a.m. as a receptionist to pay for her Yale degree—and she says ‘respect went up’ because of it

2

Shark Tank's Kevin O'Leary says if he were 25 today, he'd chase these two booming opportunities in the world of AI

3

China’s birth rate just hit its lowest point since 1949—and Trip.com cofounder James Liang thinks that’s a threat to innovation

1

Ex-PepsiCo CEO Indra Nooyi worked from midnight until 5 a.m. as a receptionist to pay for her Yale degree—and she says ‘respect went up’ because of it

2

Shark Tank's Kevin O'Leary says if he were 25 today, he'd chase these two booming opportunities in the world of AI

3

China’s birth rate just hit its lowest point since 1949—and Trip.com cofounder James Liang thinks that’s a threat to innovation
TechEquifax

How Equifax Turned Its Massive Hack Into an Even Worse ‘Dumpster Fire’

By
David Z. Morris
David Z. Morris
Down Arrow Button Icon
By
David Z. Morris
David Z. Morris
Down Arrow Button Icon
September 9, 2017, 2:42 PM ET
Add Fortune on Google for similar content.

On Thursday, consumer credit rating agency Equifax (EFX) announced what may become the most economically damaging hack in U.S. history, exposing the personal data of nearly half of all Americans.

The breach itself was bad enough, with class-action lawsuits and Congressional investigations on the table almost immediately. But the company’s haphazard response on myriad fronts has given the strong impression of inept leadership, leading security experts like Brian Krebs to refer to the hack’s aftermath as a “dumpster fire.”

Here’s a quick outline of what will likely become many entire business textbook chapters on how not to handle a gigantic data breach. And remember — Equifax discovered the breach on July 29. Most of these missteps came after nearly six weeks of preparation.

The Suspicious Stock Sale

Within four days of discovery of the breach, three top executives had sold huge chunks of company stock. The company claims the officers weren’t aware of the breach at the time of their sales. But even if that’s true (and here’s hoping we get a major investigation to find out), allowing the sales to go forward constitutes a major public image blunder.

Get Data Sheet, Fortune’s technology newsletter.

The Broken Security Check

Equifax’s response to the hack started with the rollout of an online tool to help members of the public determine if their data had been leaked. The premise of the tool alone raised some eyebrows, since it required giving a portion of your social security number . . . to a company that has shown it can’t be trusted with sensitive information.

Equifax: "To find out if we lost your social security number, please give us your social security number" https://t.co/S4o2hHjQfU pic.twitter.com/bDmgV3KjkU

— Christopher Ingraham🦗 (@_cingraham) September 8, 2017

Even worse, the tool had multiple technical breakdowns. Its security certificates were briefly invalid, leading web browsers to flag it as a phishing site. That seemed plausible, since Equifax hosted the tool on a newly-created page, not on its own trusted site.

Worst of all, multiple users who input fake names and SSNs were told that their nonexistent alter egos had been compromised.

Me: "Smith" and "123456"

Equifax: You're in danger. Sign up for our premium service for a year and then we'll start charging you.

WTF? pic.twitter.com/2IwSVKA4x4

— Justin Soffer (@JustinSoffer) September 8, 2017

@zackwhittaker So I just entered "Test" and "123456" on that Equifax eligibility page, and it says my data may have been breached. Sloppy.

— Makobeats (@Makobeats) September 8, 2017

As Krebs put it, it seemed that the tool was “completely broken at best and little more than a stalling tactic or sham at worst.”

The Lackluster Solution

Equifax’s checking tool was so underwhelming that most experts suggest that anyone with a credit history should assume they’ve been hacked. But what to do about it? Equifax, for its part, has offered to sign anyone up for its identity protection service, TrustedID, for free.

However, the signup process included a confusing waiting period, and wasn’t in effect for the weeks before the breach was disclosed. And while it could prevent hackers from opening new accounts in your name, it can’t prevent misuse of existing accounts, and doesn’t cover applications for credit screened through Equifax’s competitors.

Worse, as the New York Times points out, those who sign up for the free year of this (inadequate) protection will have to pay thereafter, since the threat won’t have disappeared. That means Equifax is essentially using its own data breach as lead generation, a distasteful move if there ever was one.

The Worrying Arbitration Clause

The TrustedID offer had another wrinkle – an arbitration clause that appeared to prevent enrollees from suing Equifax. Though it was quickly clarified that the clause didn’t encompass the breach itself, the impression that the company was trying to bait customers into waiving legal rights was troubling enough to draw comment from the Consumer Financial Protection Bureau.

The Twitter Fail

The day after disclosing its gargantuan hack, Eqifax’s customer support Twitter account struck a seriously inappropriate tone. “Happy Friday!” it tweeted, “You’ve got Stevie ready and willing to help with your customer service needs today!”

The chipper tone of the tweet, which seemed to be prescheduled and has since been deleted, was wildly out of tune with Equifax’s massive blunder. Twitter users took note, though many were remarkably supportive of poor, doomed Stevie.

This case of foot-in-mouth disease would normally be embarrassing enough on its own, but in this dumpster fire, it’s the least of the lot.

About the Author
By David Z. Morris
See full bioRight Arrow Button Icon
Add Fortune on Google for similar content.

Latest in Tech

Finance
Lorem ipsum dolor sit amet, consectetur adipiscing elit, sed do eiusmod tempor incididunt ut labore et dolore magna aliqua. Ut enim ad minim veniam
By Fortune Editors
October 20, 2025
Finance
Lorem ipsum dolor sit amet, consectetur adipiscing elit, sed do eiusmod tempor incididunt ut labore et dolore magna aliqua. Ut enim ad minim veniam
By Fortune Editors
October 20, 2025
Finance
Lorem ipsum dolor sit amet, consectetur adipiscing elit, sed do eiusmod tempor incididunt ut labore et dolore magna aliqua. Ut enim ad minim veniam
By Fortune Editors
October 20, 2025
Finance
Lorem ipsum dolor sit amet, consectetur adipiscing elit, sed do eiusmod tempor incididunt ut labore et dolore magna aliqua. Ut enim ad minim veniam
By Fortune Editors
October 20, 2025
Finance
Lorem ipsum dolor sit amet, consectetur adipiscing elit, sed do eiusmod tempor incididunt ut labore et dolore magna aliqua. Ut enim ad minim veniam
By Fortune Editors
October 20, 2025
Finance
Lorem ipsum dolor sit amet, consectetur adipiscing elit, sed do eiusmod tempor incididunt ut labore et dolore magna aliqua. Ut enim ad minim veniam
By Fortune Editors
October 20, 2025

Most Popular

Finance
Lorem ipsum dolor sit amet, consectetur adipiscing elit, sed do eiusmod tempor incididunt ut labore et dolore magna aliqua. Ut enim ad minim veniam
By Fortune Editors
October 20, 2025
Finance
Lorem ipsum dolor sit amet, consectetur adipiscing elit, sed do eiusmod tempor incididunt ut labore et dolore magna aliqua. Ut enim ad minim veniam
By Fortune Editors
October 20, 2025
Finance
Lorem ipsum dolor sit amet, consectetur adipiscing elit, sed do eiusmod tempor incididunt ut labore et dolore magna aliqua. Ut enim ad minim veniam
By Fortune Editors
October 20, 2025
Finance
Lorem ipsum dolor sit amet, consectetur adipiscing elit, sed do eiusmod tempor incididunt ut labore et dolore magna aliqua. Ut enim ad minim veniam
By Fortune Editors
October 20, 2025
Finance
Lorem ipsum dolor sit amet, consectetur adipiscing elit, sed do eiusmod tempor incididunt ut labore et dolore magna aliqua. Ut enim ad minim veniam
By Fortune Editors
October 20, 2025
Finance
Lorem ipsum dolor sit amet, consectetur adipiscing elit, sed do eiusmod tempor incididunt ut labore et dolore magna aliqua. Ut enim ad minim veniam
By Fortune Editors
October 20, 2025
Fortune Secondary Logo
Rankings
  • 100 Best Companies
  • Fortune 500
  • Global 500
  • Fortune 500 Europe
  • Most Powerful Women
  • World's Most Admired Companies
  • See All Rankings
  • Lists Calendar
Sections
  • Finance
  • Fortune Crypto
  • Features
  • Leadership
  • Health
  • Commentary
  • Success
  • Retail
  • Mpw
  • Tech
  • Lifestyle
  • CEO Initiative
  • Asia
  • Politics
  • Conferences
  • Europe
  • Newsletters
  • Personal Finance
  • Environment
  • Magazine
  • Education
Customer Support
  • Frequently Asked Questions
  • Customer Service Portal
  • Privacy Policy
  • Terms Of Use
  • Single Issues For Purchase
  • International Print
Commercial Services
  • Advertising
  • Fortune Brand Studio
  • Fortune Analytics
  • Fortune Conferences
  • Business Development
  • Group Subscriptions
About Us
  • About Us
  • Press Center
  • Work At Fortune
  • Terms And Conditions
  • Site Map
  • About Us
  • Press Center
  • Work At Fortune
  • Terms And Conditions
  • Site Map
  • Facebook icon
  • Twitter icon
  • LinkedIn icon
  • Instagram icon
  • Pinterest icon

Latest in Tech

Presidents aren’t supposed to pick winners, former White House ethics lawyer says. Trump keeps choosing Dell
PoliticsDonald Trump
Presidents aren’t supposed to pick winners, former White House ethics lawyer says. Trump keeps choosing Dell
By Mia OsmonbekovJuly 7, 2026
5 hours ago
Palantir CEO Alex Karp with his arms outstretched while making a point on stage.
NewslettersEye on AI
Palantir CEO Alex Karp is wrong about the threat Anthropic and OpenAI pose to most enterprises. That doesn’t mean he doesn’t have something to lose
By Jeremy KahnJuly 7, 2026
5 hours ago
Scott Wu, in front of a blue background, sits in a gray chair and speaks to a person out of frame.
AIProductivity
Cognition CEO says tech companies got ‘carried away’ with token leaderboards and should measure employees on output instead
By Sasha RogelbergJuly 7, 2026
6 hours ago
Tech worker walks to office
SuccessJobs
AI start-ups are snubbing entry-level talent in favor of Silicon Valley men with top degrees, research shows
By Emma BurleighJuly 7, 2026
9 hours ago
South Korean law targeting ‘fake news’ takes effect, but journalists say it discourages critical reporting and can lead to self-censorship
AsiaSouth Korea
South Korean law targeting ‘fake news’ takes effect, but journalists say it discourages critical reporting and can lead to self-censorship
By The Associated Press and Kim Tong-HyungJuly 7, 2026
9 hours ago
Trump is building a helipad with ‘carved granite’ White House seal to handle new presidential choppers
PoliticsDonald Trump
Trump is building a helipad with ‘carved granite’ White House seal to handle new presidential choppers
By The Associated PressJuly 7, 2026
9 hours ago

Most Popular

Ex-PepsiCo CEO Indra Nooyi worked from midnight until 5 a.m. as a receptionist to pay for her Yale degree—and she says ‘respect went up’ because of it
Success
Ex-PepsiCo CEO Indra Nooyi worked from midnight until 5 a.m. as a receptionist to pay for her Yale degree—and she says ‘respect went up’ because of it
By Preston ForeJuly 6, 2026
1 day ago
Shark Tank's Kevin O'Leary says if he were 25 today, he'd chase these two booming opportunities in the world of AI
AI
Shark Tank's Kevin O'Leary says if he were 25 today, he'd chase these two booming opportunities in the world of AI
By Marco Quiroz-GutierrezJuly 5, 2026
2 days ago
China’s birth rate just hit its lowest point since 1949—and Trip.com cofounder James Liang thinks that’s a threat to innovation
Asia
China’s birth rate just hit its lowest point since 1949—and Trip.com cofounder James Liang thinks that’s a threat to innovation
By Nicholas GordonJuly 7, 2026
17 hours ago
Current price of oil as of July 6, 2026
Personal Finance
Current price of oil as of July 6, 2026
By Joseph HostetlerJuly 6, 2026
1 day ago
The man who ran Bernie's campaign says Democrats are still making the same mistakes with Democratic Socialists, and they should laud Mamdani's win
Politics
The man who ran Bernie's campaign says Democrats are still making the same mistakes with Democratic Socialists, and they should laud Mamdani's win
By Catherina GioinoJuly 6, 2026
1 day ago
Even as Elon Musk calls philanthropy ‘very hard,’ everyday Americans gave a record $617 billion—despite feeling the squeeze over the cost of living
Success
Even as Elon Musk calls philanthropy ‘very hard,’ everyday Americans gave a record $617 billion—despite feeling the squeeze over the cost of living
By Preston ForeJuly 4, 2026
4 days ago

© 2026 Fortune Media IP Limited. All Rights Reserved. Use of this site constitutes acceptance of our Terms of Use and Privacy Policy | CA Notice at Collection and Privacy Notice | Do Not Sell/Share My Personal Information
FORTUNE is a trademark of Fortune Media IP Limited, registered in the U.S. and other countries. FORTUNE may receive compensation for some links to products and services on this website. Offers may be subject to change without notice.