Was the Equifax Breach Preventable?Stephen Soble of Assured Enterprises on How to Better Manage Vulnerabilities
In the weeks following the massive Equifax breach reported in September, much of the analysis of the contributing factors concluded that a vulnerability in the Apache Struts web-application software was exploited. The vulnerability was reported in March, but Equifax left it unpatched until after it was attacked in May. Like many cybersecurity thought leaders, Stephen Soble of Assured Enterprises believes this could have been prevented with the right strategy in place to detect deep software vulnerabilities.
"There are something like 500 to 1,000 new vulnerabilities discovered every week," Soble says. "What's important is not only to detect, but to be able to remediate."
In a video interview at Information Security Media Group's recent 2017 London Fraud and Breach Prevention Summit, Soble discusses:
- Why he believes Equifax missed the vulnerability that lead to its exploitation;
- Why the relationship between the board and the IT department leads to budget disconnect;
- The key stakeholders that need to be part of security budget discussions.
Soble is the chairman & CEO of Assured Enterprises Inc. Previously, he was the chairman and CEO of API Development Group for 15 years.