Breaking News

Google Outlines How It Tackles Disinformation Across Seearch, News and Youtube LG V50 ThinQ 5G Smartphone Appears Online TCL's Foldable Phone Bends Into a Smartwatch Uber's Growth is Slowing Apple Said to Buying Voice App Startup Pullstring

logo

  • Share Us
    • Facebook
    • Twitter
  • Home
  • Home
  • News
  • Reviews
  • Legacy
    • Media Tests
    • DVD Media Formats

    • Glossary
    • FAQ
    • Firmware
    • Drivers
    • BIOS
    • Software
  • Forum
  • About
    • Submit News

    • Contact Us
    • Privacy

    • Promotion
    • Advertise

    • RSS Feed
    • Site Map

Search form

Unpatched Software Led to Massive Equifax Breach

Unpatched Software Led to Massive Equifax Breach

Enterprise & IT Sep 14,2017 0

The Equifax breach that exposed sensitive data for as many as 143 million US consumers was accomplished by exploiting a Web application vulnerability, company officials said Thursday.

"Equifax has been intensely investigating the scope of the intrusion with the assistance of a leading, independent cybersecurity firm to determine what information was accessed and who has been impacted," company officials wrote in an update posted online. "We know that criminals exploited a US website application vulnerability. The vulnerability was Apache Struts CVE-2017-5638. We continue to work with law enforcement as part of our criminal investigation, and have shared indicators of compromise with law enforcement."

The flaw in the Apache Struts framework was fixed on March 6. Three days later, the bug was already under mass attack by hackers who were exploiting the flaw to install rogue applications on web servers.

The disclosure suggests that Equifax failed to update its Web applications, despite demonstrable proof the bug gave real-world attackers an easy way to take control of sensitive sites.

Equifax Chief Executive Richard Smith is expected to testify before a U.S. House of Representatives panel on Oct. 3 after nearly 40 states joined a probe of the company's handling of the breach.

The Federal Trade Commission on Thursday said it has opened an investigation into the data breach at Equifax.

Apache Struts is a framework for developing Java-based apps that run both front-end and back-end Web servers. It's relied on heavily by banks, government agencies, large Internet companies, and Fortune 500 companies.

Tags: EquifaxHacking
Previous Post
Apple Explains the 'Failed' Face ID Demo on iPhone X event
Next Post
Samsung to Create US$300 Million Fund for Auto-related Technologies

Related Posts

  • Hacked Versions of Popular Apps Appear on iPhones

  • U.S. Justice Department Targets Botnet Used by North Korean Hackers

  • Fortnite Vulnerability Put Millions of Players at Risk

  • Two Ukrainians Indicted in Computer Hacking and Securities Fraud Scheme Targeting U.S. Securities and Exchange Commission

  • Ryuk Ransomware Estimated to Have Netted in $3.7 Million in BTC Value

  • Hackers Leak Personal Data of German Politicians

  • Hackers Attacked Chromecasts and Smart TVs to Promote PewDiePie’s channel

  • Hackers Attacked U.S. Newspapers

0 Comments

Leave a Reply

More information about text formats

Filtered HTML

  • Web page addresses and e-mail addresses turn into links automatically.
  • Allowed HTML tags: <a> <em> <strong> <cite> <blockquote> <code> <ul> <ol> <li> <dl> <dt> <dd>
  • Lines and paragraphs break automatically.

Plain text

  • No HTML tags allowed.
  • Web page addresses and e-mail addresses turn into links automatically.
  • Lines and paragraphs break automatically.

BBCode

  • No HTML tags allowed.
  • You may use these tags: [abbr], [acronym], [b], [center], [code], [color], [define], [font], [h1], [h2], [h3], [h4], [h5], [h6], [hr], [i], [img], [justify], [left], [list], [node], [php], [quote], [right], [s], [size], [sub], [sup], [u], [url], [wikipedia], [youtube], [align], [link], [ol], [ul]
  • Lines and paragraphs break automatically.
CAPTCHA
This question is for testing whether or not you are a human visitor and to prevent automated spam submissions.
Image CAPTCHA
Enter the characters shown in the image.

Latest News

Google Outlines How It Tackles Disinformation Across Seearch, News and Youtube
Enterprise & IT

Google Outlines How It Tackles Disinformation Across Seearch, News and Youtube

LG V50 ThinQ 5G Smartphone Appears Online
Smartphones

LG V50 ThinQ 5G Smartphone Appears Online

TCL's Foldable Phone Bends Into a Smartwatch
Smartphones

TCL's Foldable Phone Bends Into a Smartwatch

Uber's Growth is Slowing
Enterprise & IT

Uber's Growth is Slowing

Apple Said to Buying Voice App Startup Pullstring
Enterprise & IT

Apple Said to Buying Voice App Startup Pullstring

Popular Reviews

Zidoo Z9S 4K Media Player review

Zidoo Z9S 4K Media Player review

CeBIT 2005

CeBIT 2005

CeBIT 2006

CeBIT 2006

LiteOn iHBS112 review

LiteOn iHBS112 review

Nvidia GeForce RTX 2080 Ti and GeForce 2080 Founder's Edition review

Nvidia GeForce RTX 2080 Ti and GeForce 2080 Founder's Edition review

Sony NS955 DVD Player

Sony NS955 DVD Player

Toshiba Exceria M303 64GB and M501 Exceria Pro 64GB MicroSDXC review

Toshiba Exceria M303 64GB and M501 Exceria Pro 64GB MicroSDXC review

Ridisc Media Tests

Ridisc Media Tests

  • Home
  • News
  • Reviews
  • Legacy
    • Media Tests
    • DVD Media Formats

    • Glossary
    • FAQ
    • Firmware
    • Drivers
    • BIOS
    • Software
  • Forum
  • About
    • Submit News

    • Contact Us
    • Privacy

    • Promotion
    • Advertise

    • RSS Feed
    • Site Map
  • About
  • Privacy
  • Contact Us
  • Promotional Opportunities @ CdrInfo.com
  • Advertise on out site
  • Submit your News to our site
  • RSS Feed