Security News

Easily exploitable Apache Struts vulnerability opens businesses to attack (Help Net Security)
2017-09-06 17:11

A critical vulnerability in Apache Struts, a popular open source framework for developing web applications, opens any server running an app built using it to remote attackers. It can be exploited...

Exploit Available for Critical Apache Struts Vulnerability (Security Week)
2017-09-06 08:12

The latest version of Apache Struts 2 addresses several vulnerabilities, including a critical remote code execution flaw for which an exploit was created within hours after the release of a patch....

Patch Released for Critical Apache Struts Bug (Threatpost)
2017-09-05 18:10

The Apache Software Foundation released a patch on Tuesday for a critical vulnerability impacting all versions of Struts since 2008.

Apache Struts 2 Exploits Installing Cerber Ransomware (Threatpost)
2017-04-07 16:46

Attackers are attempting to exploit the recent Apache Struts vulnerability on Windows servers and the payload is a variant of the Cerber ransomware.

Apache Struts Flaw Used to Deliver Cerber Ransomware (SecurityWeek)
2017-04-06 15:33

In-the-wild exploits ramp up against high-impact sites using Apache Struts (ArsTechnica)
2017-03-14 20:44

Apache Struts 2 bug bites Canada, Cisco (The Register)
2017-03-14 01:04

Apache Struts 2 Under Zero-Day Attack, Update Now (InfoRiskToday)
2017-03-09 19:56

Attacks Heating Up Against Apache Struts 2 Vulnerability (Threatpost)
2017-03-09 17:25

Apache administrators are urged to immediately upgrade the Struts 2 web application framework to address a remote code execution flaw under public attack.

Apache Struts 2 needs patching, without delay. It's under attack now (The Register)
2017-03-09 15:21