Former CEO Richard Smith testified that he didn’t ask for a briefing, nor did anyone recommend one to him, until August 17th. Smith admitted that he still did not know the size, the scope of the breach It took another week before the Board of Directors was briefed, showing a complete lack of concern for the privacy of the customers data from the top down. Smith said forensic investigators are now looking at why the scanner failed to identify the vulnerability. Forensic investigators should instead be looking at how Equifax could spend $250M in 3 years and apparently not have an inventory of software used, established redundancy in the personnel responsible for managing patches.”]
Source: https://www.csoonline.com/article/3230521/equifax-proves-the-cisos-right.html

