It occurs to me, DHS notifies Equifax of a security vulnerability, there is one sweep done, and then.... I should also add that I have information here that says, “Equifax did not take advantage of DHS' Automated Indicator Sharing program that enables the exchange of cyber threat indicators between the private sector and government” and a patch was not adequately installed as it ought to have been.
When you add up all these factors, would you characterize that as negligence on behalf of your parent company?