Equifax Data Breach: Unpatched Apache Struts Vulnerability Was Exploited In Hack
Credit reporting firm Equifax announced Thursday the hackers that breached its servers exploited an Apache Struts security vulnerability, which led to the exposure of personal information belonging to more than 143 million consumers in the United States.
While Equifax reported the breach occurred sometime around mid-May, the bug in the Apache Struts framework was fixed in March, more than two months before the apparent exploit on Equifax servers took place.
Free Active Directory Assessment
Get Visibility Into Privilege And Service Account Exposure
For a limited time, Attivo Networks is providing free Active Directory Security Assessments to demonstrate how ADAssessor provides unprecedented and continuous visibility to AD vulnerabilities.
Try Our Endpoint Detection Net (EDN) for Free
FAST AND EASY
Free use offer of our Award-winning security solution to prevent attackers from lateral movement, credential theft, and privilege escalation, fast and easy.
ADSecure 90-Day Free Trial
GET PROTECTION AGAINST UNAUTHORIZED ACCESS TO ACTIVE DIRECTORY
- Hide and deny access to AD objects
- Get alerted on unauthorized queries
- Attack details easily viewable in dashboard
- Your data remains on-premise