The Latest in IT Security

Equifax hack preventable with patch

14
Sep
2017

computerservers2_getty

Equifax has identified the flaw in its website hackers used to breach its systems, potentially impacting 143 million Americans.

In a consumer update Wednesday night, the credit reporting firm pointed to a known security issue in the web applications software Apache Struts as the one used in the breach.

The flaw in Struts that was used by the hackers had actually been patched by the time hackers used it against Equifax — the patch was released mid-March while the breach was in May. But the patch had to be individually applied for all the web applications using Struts on the server, a process that takes time and effort.

Related posts:
  1. Apache Struts 2.3.16.2 Released to Properly Fix Zero-Day Vulnerability
  2. IDG Contributor Network: Change management: Equifax highlighted the vulnerability gap between disclosure and patch
  3. Scammers Offer to Sell Data Stolen in Equifax Hack
  4. Up to 44 million UK consumers may have had their identity put at risk after Equifax hack
  5. Apache Struts 2 exploit used to install ransomware on servers

Read More

Tags:  
Written by Thehill
0 Comments

Leave a reply


Categories

THURSDAY, APRIL 25, 2024
WHITE PAPERS

Mission-Critical Broadband – Why Governments Should Partner with Commercial Operators:
Many governments embrace mobile network operator (MNO) networks as ...

ARA at Scale: How to Choose a Solution That Grows With Your Needs:
Application release automation (ARA) tools enable best practices in...

The Multi-Model Database:
Part of the “new normal” where data and cloud applications are ...

Featured

Archives

Latest Comments