Skip to main content
  1. Home
  2. Computing
  3. Web
  4. News

Credit union hacks continue with Equifax and TransUnion malware attacks

Add as a preferred source on Google

If Equifax thought the resignation of its CEO would be the beginning of the end of its catastrophic security debacle, it was sorely mistaken. This week has seen it attacked again, ultimately redirecting visitors to fake Flash Player updates and malware. It wasn’t the only one either, as TransUnion’s Central American website began doing the same this week.

Although there have been many large hacks over the past few years, the Equifax one was easily one of the worst. Affecting more than 145 million Americans and severely compromising the identity of hundreds of thousands, it left the majority of the country vulnerable to fraud. But it appears as if the Equifax security woes are far from over.

Recommended Videos

When security researcher, Randy Abrams attempted to visit the Equifax site to check some information on his credit report, he found himself redirected to a malicious URL which claimed his Flash players was out of date. That is a familiar scam message to anyone who has been on the internet for long enough, but it was a surprise to see the scam affect Equifax’s site so soon after it was breached earlier.

As Ars Technica pointed out, such campaigns are often a flash in the pan, but not in this instance. The Equifax site continued to redirect the discoverer to a nefarious alternative site for several attempts.

What is even more worrisome about this, is that people affected by the Equifax hack — as Abrams was — will visit its site to learn more or to mitigate problems it might cause and will be faced with yet another security threat. Fortunately, at the time of writing, it appears to have been fixed, though the resource the previously infected link was supposed to send visitors to is “down for maintenance.”

It appears, too, that the Equifax hack has emboldened hackers to target other credit check agencies too. In a separate incident, the same sort of malicious, faux Flash Player update demands was found on the TransUnionCentroAmerica.com website, Ars Technica reported. Although more sporadic than the Equifax attack, links on its site sent people to malicious pages suggesting they install an update, only to instead download malware.

In some cases, the download would deliver an exploit kit that would try to infect further parts of the browser or system.

TransUnion is said to be aware of the issue and claims to have fixed it. It is also said to be looking into its other online properties to make sure the nefarious links cannot be found elsewhere on its online services.

For those still concerned about your Equifax data, we have a guide on how to secure your information. It’s also worth considering enacting a credit freeze.

Jon Martindale
Jon Martindale covers how to guides, best-of lists, and explainers to help everyone understand the hottest new hardware and…
How to install macOS 27 Golden Gate public beta on your Mac?
From a smarter Siri to a more reliable Spotlight, here's your full walkthrough for installing macOS 27 Golden Gate's public beta today.
macOS 27 Golden Gate

Along with iOS 27’s public beta, Apple has also released macOS 27 Golden Gate’s public beta build, so that early adopters can get their hands on the new features, including Siri AI, and provide timely feedback to help ensure a stable iOS launch in September. 

If you’re sold on all the new features but don’t want to put your faithful MacBook through developer beta duty, a public beta offers a much more refined experience. To install macOS 27’s public beta, follow the steps given below. 

Read more
Microsoft is finally fixing the worst thing about Windows Search, but you can’t try it just yet
Windows Insiders in the Experimental channel are getting a Search experience that finally feels less of a billboard and more of what users actually need.
Page, Text, Person

Windows Search has been a mess for years, and I do not use that word lightly. Open it to find a file, and you get trending Bing topics, Microsoft Store promotions, and an AI tools tile that just opens a browser. 

That is changing, but not immediately for all users. Microsoft is rolling out a batch of Windows Search improvements to Insiders in the Experimental channel, and for once, this isn't just a fresh coat of paint.

Read more
Apple doesn’t want to share this AirPods feature with Meta, but the EU may force its hand
Spring 2027, EU only, built under DMA pressure.
The front of the Ray-Ban Meta smartglasses.

I’ve been an AirPods user for the last four years, and one of the things that makes it genuinely hard to leave behind is the seamless, almost magical pairing experience across devices. Open an AirPods case near your iPhone, and a pop-up appears within seconds. Switch to your Mac and the audio follows. 

However, the experience is limited only to Apple devices. Doesn’t matter whether you have one of the coolest pieces of tech on the market right now; if it’s not Apple, it won’t get the same treatment. However, that might change for the Meta Quest or the Ray-Ban Meta glasses, thanks to pressure from the EU. 

Read more