Vulnerabilities
Oracle patches 7 Apache Struts 2 vulnerabilities
Oracle issued seven security updates to handle vulnerabilities found in Apache Struts 2.
About SC Media
Your search for 5638 returned 10 results
Cybercrime, Malware, Security News
Apache Struts exploit found in Mirai variant may signify shift in attack strategy
Researchers for the first time have discovered a variant of the Mirai Internet of Things botnet that targets an vulnerability found in unpatched versions of the open-source Apache Struts web app development platform. That bug is none other than the infamous CVE-2017-5638, a remote code execution flaw that was exploited in the Equifax data breach, according to…
Network Security
Following Equifax breach, FBI issues flash alert for Apache Struts flaws
The FBI issued a flash alert warning people to patch the Apache Struts vulnerabilities warning that it enabled an unnamed corporate breach.
Vulnerabilities
Apache Struts vulnerability being exploited by attackers
Starting last Thursday (9 March 2017), AlienVault has seen a high number of attackers trying to exploit this vulnerability and recommends patching as soon as possible.
Malware
Monero crypto miner leveraging Apache Struts vulnerability
Cryptocurrency miners have begun using two older and already patched vulnerabilities to compromise servers to mine the Monero digital currency.
Vulnerabilities
Vulnerability in Apache Struts active in the wild
A new vulnerability has been spotted in Apache's Struts open-source project that has been spotted active in the wild allowing remote code execution.
Cryptocurrency
Malicious Monero miner spreads via arsenal of web server exploits
Researchers have discovered a versatile cryptominer worm that propagates itself by exploiting vulnerabilities in Microsoft's SMBv1 server, Oracle's WebLogic Server and Apache Struts, as well as by brute force attacking Microsoft SQL servers.
Vulnerabilities
Security update issued after critical RCE vulnerable found in core of Apache Struts
Users of the open-source Apache Struts 2 web app development framework have been urged to update their software following today's disclosure of a critical remote code execution vulnerability that leaves commonly used endpoints prone to exploitation.
Ransomware
Attackers Strut Their Stuff, exploiting Apache Struts 2 framework to serve ransomware
Bad actors have been leveraging a disclosed remote code execution exploit in Apache Struts 2 to launch an evolving array of malicious campaigns, including Cerber ransomware attacks, against machines that still use unpatched versions of the software.
Data Breach
Apache Struts vulnerability likely behind Equifax breach, Congress launches probes
The Equifax breach, now believed to have been accomplished through the exploitation of a vulnerability in open-source server software Apache Struts disclosed earlier this month, has rained down criticism on the credit information company for poor security practices and has prompted at least three congressional committees to consider probing the incident. Jeff Williams, cofounder and…
Next post in Data Breach
