Security News

The massive Equifax data breach that exposed highly sensitive data of as many as 143 million people was caused by exploiting a flaw in Apache Struts framework, which Apache patched over two months...

Last Thursday, Equifax reported a data breach that affects 143 million US customers, about 44% of the population. It's an extremely serious breach; hackers got access to full names, Social...

Chief of Badly Breached Data Broker Takes to USA Today to ApologizeWhat do you do if you're the CEO of a credit bureau that's suffered a massive breach, leading to Congressional probes, dozens of...

Unsecure Customer Service Portal Exposes National ID NumbersEquifax has a new problem on its hands: Argentina. Investigators with security consultancy Hold Security discovered that Equifax's...

A class action lawsuit by Canadian consumers whose data was stolen in a massive hack of US credit bureau Equifax was launched Tuesday, seeking damages of Can $550 billion ($450 billion US). read more

Credit Bureau Has Yet to Describe Exploited 'Website Application Vulnerability'Equifax has yet to describe how its site was breached, except to blame a vague "U.S. website application...

Have the attackers responsible for the Equifax data breach exploited a vulnerability in Apache Struts, a popular open source framework for developing web applications, to compromise the company’s...

Massive Breach Turns Equifax's 'Products' Into Victims, But Don't Expect JusticeIf the Equifax breach turns out like every other massive data breach we've seen for more than a decade, after a big...

A detailed analysis of the Equifax breach highlights the latest edition of the ISMG Security Report. Also, update on Russia exploiting social media to influence the 2016 presidential vote.

The Vice President of the Apache Struts PMC says the attackers likely used an unknown Struts zero day or an earlier announced vulnerability.