The Equifax may have been hacked again, now to serve up adware.
"We are aware of the situation identified on the equifax.com website in the credit report assistance link", an Equifax representative said in an email. Equifax says it took the page down "out of an abundance of caution" as it investigates. He said hackers took control of the website and tried to trick visitors into installing fraudulent Adobe Flash updates to infect their computers with malware.
The company, which gathers data on consumers for credit inquiries, has blamed a combination of human and technical error for the massive breach - not the largest on record but potentially the most damaging because of the sensitive financial information on consumers it holds in its databases.
The repeated hacks at Equifax - and company's inability to stop them - has shaken consumer confidence in one of the country's main credit-reporting agencies and led to calls for class-action lawsuits in several states.
According to the information he shared with Ars Technica, the fake Flash update conceals a file named MediaDownloaderIron.ex, which, according to VirusTotal, is detected as adware by only three AV solutions. Previously, people could access the page under the "Credit Report Assistance" heading.
The incident comes just over a month after Equifax disclosed a massive data breach in which hackers stole the personal information of more than 145 million USA consumers.
The latest reports of a hack also come on the heels of the Equifax signing a multi-million dollar deal with the IRS to assist with taxpayer and personal identity verification services.