Tags Apache Struts

If hackers are exploiting the Log4j flaw, CISA says we might not know yet

by Tim Starks • 7 months ago

The agency harkened back to the long delay between vulnerability discovery and the Equifax breach.

Backdoor vulnerability in open source tool exposes thousands of apps to remote code execution

by Jeff Stone • 3 years ago

The 2017 data breach at Equifax was possible because the company did not act to resolve a flaw in the open source Apache Struts framework.

Apache alerts developers of remote code execution flaw

by Zaid Shoorbajee • 4 years ago

The two-year-old flaw could allow hackers to take control of unsuspecting developers' web servers.

New critical vulnerability exposes Apache Struts instances to remote attacks

by Patrick Howell O'Neill • 4 years ago

Update your Apache Struts instances now.

Equifax CISO Jamil Farshchi's three-act, 'shared fate' security plan

by Greg Otto • 4 years ago

In an exclusive interview with CyberScoop, Farshchi describes how he wants to secure Equifax and instill the idea that cybersecurity doesn't fall to the IT division.

Over 10,000 companies downloading software vulnerable to Equifax hack

by Mark Satter • 4 years ago

Unpatched Apache Struts instances are still out there in large quantities.