Equifax has revealed that approximately 2.5 million additional US customers have been potentially impacted by the cyber security breach at the firm.

Last month it was revealed that consumer credit reporting agency Equifax had fallen victim to a cyber security incident which potentially impacted 143 million US consumers, as well as around 400,000 UK customers.

However, an investigation by cyber security outfit Mandiant following the hack has found that a further 2.5 million US customers may be impacted, bringing the total to 145.5 million.

Mandiant did not identify any evidence of additional or new attacker activity or any access to new databases or tables. Instead, this additional population of consumers was confirmed during Mandiant's completion of the remaining investigative tasks and quality assurance procedures built into the investigative process.

The completed review also has concluded that there is no evidence the attackers accessed databases located outside of the United States.

Newly appointed CEO of Equifax, Paulino do Rego Barros, Jr, said: “I want to apologise again to all impacted consumers. As this important phase of our work is now completed, we continue to take numerous steps to review and enhance our cybersecurity practices.

“We also continue to work closely with our internal team and outside advisors to implement and accelerate long-term security improvements.”

The forensic investigation related to United Kingdom consumers has been completed and the resulting information is now being analysed in the UK.

Share Story: