Security News

Risks Limited With Latest Apache Bug, Optionsbleed
2017-09-19 14:29

The risks surrounding the latest Apache bug, called Optionsbleed, are limited given it can only be attacked under certain conditions. Apache, and many Linux distributions, have patched the flaw.

Equifax Confirms Apache Struts Flaw Used in Hack
2017-09-14 11:12

U.S. credit reporting agency Equifax confirmed on Wednesday that an Apache Struts vulnerability exploited in the wild since March was used to breach its systems. read more

Equifax's Colossal Error: Not Patching Apache Struts Flaw
2017-09-14 09:33

Confirmed: Hackers Behind Mega-Breach Exploited Struts Flaw, Patch Was AvailableEquifax made an error that led to one of the largest and most sensitive data breaches of all time, and the mistake...

Equifax Suffered Data Breach After It Failed to Patch Old Apache Struts Flaw
2017-09-14 01:38

The massive Equifax data breach that exposed highly sensitive data of as many as 143 million people was caused by exploiting a flaw in Apache Struts framework, which Apache patched over two months...

Is Unpatched Apache Struts Flaw to Blame for Equifax Hack?
2017-09-12 18:03

Credit Bureau Has Yet to Describe Exploited 'Website Application Vulnerability'Equifax has yet to describe how its site was breached, except to blame a vague "U.S. website application...

Equifax attackers got in through an Apache Struts flaw?
2017-09-12 14:59

Have the attackers responsible for the Equifax data breach exploited a vulnerability in Apache Struts, a popular open source framework for developing web applications, to compromise the company’s...

Apache Struts Flaw Increasingly Exploited to Hack Servers
2017-09-12 09:04

Security firm Imperva has detected thousands of attacks attempting to exploit a recently patched remote code execution vulnerability affecting the Apache Struts 2 open source development...

Apache Struts 2 Flaws Affect Multiple Cisco Products
2017-09-12 03:51

After Equifax massive data breach that was believed to be caused due to a vulnerability in Apache Struts, Cisco has initiated an investigation into its products that incorporate a version of the...

Apache Foundation Refutes Involvement in Equifax Breach
2017-09-11 19:02

The Vice President of the Apache Struts PMC says the attackers likely used an unknown Struts zero day or an earlier announced vulnerability.

Apache Struts Flaw Reportedly Exploited in Equifax Hack
2017-09-11 06:16

A vulnerability affecting the Apache Struts 2 open-source development framework was reportedly used to breach U.S. credit reporting agency Equifax and gain access to customer data. read more