Displaying items by tag: Apache Struts

Thursday, 20 September 2018 19:53

UK fines Equifax $900,000 over leaking Britons' data

The British Information Commissioner's Office has hit American credit information provider Equifax with a fine of £500,000 (A$909,321) over a data breach which the US firm disclosed on 7 September 2017 and which it said had occurred between mid-May and July that year. Passwords of British customers were stored in plain text, the ICO said.

Published in Security

Security vendor Palo Alto Labs has discovered two new variants of the Mirai and Gafgyt botnet that it says are targeting a flaw in the Apache Struts Web framework and one in SonicWall's Global Management System.

Published in Security

Over three days, Cisco has released 32 security advisories with three of them rated critical, one being a flaw in the Apache Struts Web framework which is used in several Cisco products.

Published in Security

A recently discovered remotely exploitable vulnerability in the Apache Struts 2 Web framework is being leveraged by attackers to launch a cryptocurrency-mining campaign, the security firm F5 says.

Published in Security

Security firm Recorded Future claims it has found proof-of-concept code on the code repository GitHub that can be used to easily exploit the recently discovered flaw in the Apache Struts Web framework.

Published in Security

Malicious attackers have launched a campaign aimed at the Apache Struts Web framework, and are using NSA exploits leaked by the Shadow Brokers to spread laterally on internal networks after compromising a system.

Published in Security

Attackers who caused the data leak at American credit information provider Equifax, that led to the details of about 143 million being made public, are likely to have used a vulnerability in the Apache Struts Web application framework to gain entry.

Published in Security

A vulnerability in the Apache Struts Web application framework has left a large number of high-profile sites open to exploitation, according to researchers at security vendor lgtm.

Published in Security
Thursday, 09 March 2017 11:50

Apache Struts 0-day being exploited in the wild

Threat intelligence firm Talos has released details of a zero-day vulnerability in the Apache Struts web application framework that is being actively exploited in the wild.

Published in Security
Thursday, 04 September 2014 13:54

Akamai warns of Linux malware

Akamai's Prolexic security operation says Linux malware has been implicated in DDoS attacks.

Published in Open Source




Guest Opinion

Guest Interviews

Guest Reviews

Guest Research

Guest Research & Case Studies

Channel News