The hackers took steps to evade detection, too, routing traffic through about 34 servers in nearly 20 countries to mask their origin and using encrypted communication channels within Equifax’s network to blend in with normal network activity, authorities aid.
“Chinese spying is over the top increasingly dangerous,” said Jim Lewis, a senior vice president and director of the Technology Policy Program at the Center for Strategic and International Studies in Washington. “The PLA has more personal data on Americans than anyone else.”
It’s the second time in a week that Barr has raised criticism of China’s behavior on technology issues. Last week he gave a speech warning of the threats he said are posed by Chinese technology, focusing on Huawei Technologies Co.’s 5G networks, and saying the U.S. should consider investing in competitors Nokia Oyj and Ericsson AB.
“Unfortunately, the Equifax hack fits a disturbing and unacceptable pattern of state-sponsored computer intrusions and thefts by China and its citizens that have targeted personally identifiable information, trade secrets, and other confidential information,” he said.
Equifax announced in September 2017 that hackers accessed data including Social Security numbers, driver’s license numbers and addresses.
Hackers gained access to the Equifax network in May 2017 and attacked the company for 76 days, according to a House Oversight Committee report. Equifax noticed “red flags” in late July, and then in early August contacted the Federal Bureau of Investigation, outside counsel and cybersecurity firm Mandiant. The company waited until that September to inform the public of the breach.
The breach attracted scrutiny from lawmakers in Washington and criticism from consumers and banks, igniting a debate about the role credit bureaus play in lending.
--With assistance from Jenny Surane.
This article was provided by Bloomberg News.