It seems that Equifax isn’t the only company under the radar. Competitor TransUnion appears to be also experiencing issues when you try and visit their website. A new report coming from Ars Technica tells us that Equifax isn’t the only credit-reporting agency experiencing the fake Flash problems.
According to a security researcher from AV provider Malwarebytes, they said that transunioncentroamerica.com, a TransUnion site that serves people in Central America, is also sending visitors to the fraudulent updates and other types of malicious pages.
We recently reported that Equifax website was sending visitors to malicious pages that gave visitors a fake Flash download option. When you click the files, it infected visitors’ computers with adware that was detected by only three of 65 antivirus providers (yikes!).
TransUnion seems to be experiencing a similar issue. Malwarebyte security researcher Jérôme Segura states that he was able to repeatedly reproduce the redirect when pointing his browser to transunioncentroamerica.com (don’t go there!). In some cases, an exploit kit would be downloaded to infect computers that didn’t have updated browsers or browser plugins. In other cases, a fake Flash update would be downloaded. Segura also published this blog post.
Thursday afternoon, Equifax officials gave a small explanation as to what happened on their website. They stated that the problem was the result of a third-party service Equifax was using to collect website-performance data and that the “vendor’s code running on an Equifax website was serving malicious content.” Equifax added that it shut down the affected portion of its site, but the company has restored it after removing the malicious portion.
