Candlelites

Everything from Everywhere

equifax breach potentially linked to apache struts vulnerability

equifax breach potentially linked to apache struts vulnerability News Article With The full text news. The Resource Link is down the post and you can View this News Article in the source page.



equifax breach potentially linked to apache struts vulnerability

a financial analyst firm with ties to equifax has reported a potential root cause of the massive breach at the credit reporting and monitoring. a baird equity research report claims equifax told the company that a vulnerability in the open-source apache struts framework was the root cause of the data breach."our understanding is data retained by efx primarily generated through consumer interactions was breached via the apache struts flaw," the report stated.to date, equifax has neither publicly confirmed nor denied the claim that a flaw in apache struts was the root cause of the massive exploit that leaked data on 143 million americans that was first publicly disclosed on sept. 7. the only detail that equifax has publicly stated about the root cause of the breach is that it was a web application vulnerability. the apache software foundation, which oversees the development of struts, has responded to the claims that struts may have been involved in the equifax security breach. related reading"we are sorry to hear news that equifax suffered from a security breach and information disclosure incident that was potentially carried out by exploiting a vulnerability in the apache struts web framework," rené gielen, vice president of apache struts, wrote in a statement. "at this point in time it is not clear which struts vulnerability would have been utilized, if any."in recent months, multiple vulnerabilities have been patched in the apache struts framework. on sept. 5, the...