Security News

Apache Struts Issues Emergency Patch to Fix Critical Flaw
2018-08-23 12:18

Some Security Experts Recommend Replacing Struts Altogether, Due to Breach RiskApache has released an emergency fix for its Struts web application framework to patch a flaw that attackers can...

Apache's latest SNAFU – Struts normal, all fscked up: Web app framework needs urgent patching
2018-08-22 22:24

Paging Equifax: Time to update again, fellas Another critical security hole has been found in Apache Struts 2, requiring an immediate update.…

Critical Apache Struts 2 Flaw Allows Remote Code Execution
2018-08-22 16:10

Updates released on Wednesday for the Apache Struts 2 open source development framework address a critical vulnerability that can be exploited for remote code execution. The flaw, tracked as...

New Apache Struts RCE Flaw Lets Hackers Take Over Web Servers
2018-08-22 14:18

Semmle security researcher Man Yue Mo has disclosed a critical remote code execution vulnerability in the popular Apache Struts web application framework that could allow remote attackers to run...

Apache OpenWhisk Flaws Allowed Attackers to Overwrite Code in IBM Cloud
2018-07-25 06:45

Researchers discovered that two vulnerabilities in the Apache OpenWhisk serverless cloud platform could have allowed malicious actors to overwrite and execute arbitrary code. read more

Apache, IBM Patch Critical Cloud Vulnerability
2018-07-24 19:38

The flaw opened a hole in IBM's serverless Cloud Functions platform, potentially exposing confidential customer data.

Apache Tomcat Patches Important Security Vulnerabilities
2018-07-24 11:48

The Apache Software Foundation (ASF) has released security updates to address several vulnerabilities in its Tomcat application server, one of which could allow a remote attacker to obtain...

Information Disclosure, DoS Flaws Patched in Apache Tomcat
2018-07-24 04:59

The Apache Software Foundation informed users over the weekend that updates for the Tomcat application server address several vulnerabilities, including issues that can lead to information...

One Year Later, Hackers Still Target Apache Struts Flaw
2018-03-26 15:27

One year after researchers saw the first attempts to exploit a critical remote code execution flaw affecting the Apache Struts 2 framework, hackers continue to scan the Web for vulnerable servers....

Vulnerable Apache Solr, Redis, Windows servers hit with cryptominers
2018-03-09 19:53

Vulnerable servers of all kinds are being targeted, compromised and made to mine cryptocurrencies for the attackers. Apache Solr servers under attack SANS ISC handler Renato Marihno warns about an...