Tags Apache Struts

If hackers are exploiting the Log4j flaw, CISA says we might not know yet

by Tim Starks

The agency harkened back to the long delay between vulnerability discovery and the Equifax breach.

Backdoor vulnerability in open source tool exposes thousands of apps to remote code execution

by Jeff Stone

The 2017 data breach at Equifax was possible because the company did not act to resolve a flaw in the open source Apache Struts framework.

Apache alerts developers of remote code execution flaw

by Zaid Shoorbajee

The two-year-old flaw could allow hackers to take control of unsuspecting developers' web servers.

New critical vulnerability exposes Apache Struts instances to remote attacks

by Patrick Howell O'Neill

Update your Apache Struts instances now.

Equifax CISO Jamil Farshchi's three-act, 'shared fate' security plan

by Greg Otto

In an exclusive interview with CyberScoop, Farshchi describes how he wants to secure Equifax and instill the idea that cybersecurity doesn't fall to the IT division.

Over 10,000 companies downloading software vulnerable to Equifax hack

by Mark Satter

Unpatched Apache Struts instances are still out there in large quantities.