Security Experts:

Connect with us

Hi, what are you looking for?


Incident Response

Equifax CEO Steps Down After Massive Data Breach

Equifax CEO Richard Smith Steps Down After Massive Data Breach, Will Not Get Annual Bonus

Equifax CEO Richard Smith Steps Down After Massive Data Breach, Will Not Get Annual Bonus

Equifax chairman and CEO Richard Smith stepped down Tuesday, just weeks after the company disclosed a massive data breach that exposed more than 143 million U.S. individuals.

Paulino do Rego Barros, Jr., who most recently served as President, Asia Pacific, and is a seven-year veteran of the company, has been appointed as interim Chief Executive Officer.

The company said that Board member Mark Feidler has been appointed to serve as Non-Executive Chairman.

According to an SEC filing, Smith will not receive his annual bonus outlinted in a 2008 employment agreement, and added that he “irrevocably disclaims any right he may have to such bonus.”

The credit ratings firm said it would conduct a search for a new permanent CEO, and would consider both internal and external candidates. Smith has agreed to serve as an unpaid adviser to Equifax to assist in the transition.

News of Smith’s departure comes just days after Equifax announced that Chief Security Officer Susan Mauldin and Chief Information Officer David Webb had retired from the company.

“The Board remains deeply concerned about and totally focused on the cybersecurity incident.  We are working intensely to support consumers and make the necessary changes to minimize the risk that something like this happens again,” Feidler said in a statement. “Speaking for everyone on the Board, I sincerely apologize.”

Feidler said the company has formed a special committee to focus on the issues arising from the breach “to ensure that all appropriate actions are taken.”

The breach, which affects roughly 143 million U.S. consumers, involved names, social security numbers, dates of birth, addresses and, in some cases, driver’s license numbers. Roughly 100,000 Canadians were also affected by the incident.

After New York Attorney General Eric T. Schneiderman announced the launch of a formal investigation into the Equifax breach, Illinois and nearly 40 other states joined the probe as of Sept. 20.

Equifax says that it maintains data on more than 820 million consumers and more than 91 million businesses worldwide.

Equifax shares have fallen more than 30% since the disclosure of the breach, wiping more than $5 billion off the company’s market capitalization.

Written By

For more than 10 years, Mike Lennon has been closely monitoring the threat landscape and analyzing trends in the National Security and enterprise cybersecurity space. In his role at SecurityWeek, he oversees the editorial direction of the publication and is the Director of several leading security industry conferences around the world.

Click to comment

Expert Insights

Related Content

Application Security

Cycode, a startup that provides solutions for protecting software source code, emerged from stealth mode on Tuesday with $4.6 million in seed funding.

Data Breaches

GoTo said an unidentified threat actor stole encrypted backups and an encryption key for a portion of that data during a 2022 breach.

Management & Strategy

Industry professionals comment on the recent disruption of the Hive ransomware operation and its hacking by law enforcement.

Management & Strategy

Tens of cybersecurity companies have announced cutting staff over the past year, in some cases significant portions of their global workforce.

Incident Response

Cygnvs emerges from stealth mode with an incident response platform and $55 million in Series A funding.

Management & Strategy

Microsoft making a multiyear, multibillion dollar investment in the artificial intelligence startup OpenAI, maker of ChatGPT and other tools.


Twenty-one cybersecurity-related M&A deals were announced in December 2022.


A recently disclosed vBulletin vulnerability, which had a zero-day status for roughly two days last week, was exploited in a hacker attack targeting the...