Equifax confirms unpatched Apache Struts flaw was exploited in massive data breach

clock • 2 min read

Apache Struts patch released two months before hackers struck

An unpatched flaw in the Apache Struts Web Framework was to blame for last week's Equifax breach that exposed the social security numbers and other personal details of 143 million Americans, the co...

To continue reading this article...

Join Computing

  • Unlimited access to real-time news, analysis and opinion from the technology industry
  • Receive important and breaking news in our daily newsletter
  • Be the first to hear about our events and awards programmes
  • Join live member only interviews with IT leaders at the ‘IT Lounge’; your chance to ask your burning tech questions and have them answered
  • Access to the Computing Delta hub providing market intelligence and research
  • Receive our members-only newsletter with exclusive opinion pieces from senior IT Leaders

Join now

 

Already a Computing member?

Login

You may also like
Open source: Lightbend responds to critics of Akka licence change

Open Source

Open source: Lightbend responds to critics of Akka licence change

Accusations of 'cakeism' and 'marketing' unfair, says SVP Strategy & Product Brad Murdoch

clock 12 September 2022 • 4 min read
Vendors abandoning open source licencing accused of cakeism

Open Source

Vendors abandoning open source licencing accused of cakeism

As Lightbend becomes the latest adoptor of 'source available' for Akka, companies pretending they are still open source are accused of wanting to have their cake and eat it

clock 08 September 2022 • 5 min read

Open Source

Grafana Labs becomes the latest open source firm to change its licensing

Grafana, Loki and Tempo move to AGPLv3 - but for once AWS is not to blame

clock 21 April 2021 • 4 min read
Most read
01

UK and allies reveal methodology of Russian GRU threat actor Unit 29155

06 September 2024 • 2 min read
02

Asian Tech Roundup: India threatens Wikipedia

06 September 2024 • 4 min read
03

Veeam patches critical flaws, urges users to update

06 September 2024 • 2 min read
04

School introduces UK's first 'teacherless' AI classroom

02 September 2024 • 4 min read
05

Nationwide and Red Hat partner to scale integration platform

06 September 2024 • 2 min read

Sign up to our newsletter

The best news, stories, features and photos from the day in one perfectly formed email.

Get the newsletter

More on Security

Microsoft offers advice on avoiding another CrowdStrike-style outage
Security

Microsoft offers advice on avoiding another CrowdStrike-style outage

Vendors should minimise use of kernel mode, customers should make full use of integrated Windows security features

John Leonard
John Leonard
clock 29 July 2024 • 3 min read
'Gay furry hackers' breach conservative US think tank behind Project 2025
Security

'Gay furry hackers' breach conservative US think tank behind Project 2025

Heritage Foundation calls group "degenerate perverts"

Tom Allen
Tom Allen
clock 11 July 2024 • 2 min read
Why 'change' for the UK must include cybersecurity
Security

Why 'change' for the UK must include cybersecurity

Labour needs to to get ahead and demonstrate a commitment to security from the outset

Rick Jones
clock 11 July 2024 • 4 min read