Security News

Equifax divulged on Wednesday that the culprit behind this summer's breach of 143 million Americans was an Apache Struts vulnerability, CVE-2017-5638, patched back in March.

The attackers who breached Equifax managed to do so by exploiting a vulnerability in its US website, the company has finally confirmed. The vulnerability in question was Apache Struts...

A U.S. consumer protection watchdog agency said Thursday it has begun an investigation into a massive data breach at credit bureau Equifax that may have leaked sensitive information on 143 million...

The massive Equifax data breach that exposed highly sensitive data of as many as 143 million people was caused by exploiting a flaw in Apache Struts framework, which Apache patched over two months...

Last Thursday, Equifax reported a data breach that affects 143 million US customers, about 44% of the population. It's an extremely serious breach; hackers got access to full names, Social...

Unsecure Customer Service Portal Exposes National ID NumbersEquifax has a new problem on its hands: Argentina. Investigators with security consultancy Hold Security discovered that Equifax's...

A class action lawsuit by Canadian consumers whose data was stolen in a massive hack of US credit bureau Equifax was launched Tuesday, seeking damages of Can $550 billion ($450 billion US). read more

Massive Breach Turns Equifax's 'Products' Into Victims, But Don't Expect JusticeIf the Equifax breach turns out like every other massive data breach we've seen for more than a decade, after a big...

A detailed analysis of the Equifax breach highlights the latest edition of the ISMG Security Report. Also, update on Russia exploiting social media to influence the 2016 presidential vote.

The Vice President of the Apache Struts PMC says the attackers likely used an unknown Struts zero day or an earlier announced vulnerability.