The hackers who broke into Equifax exploited a flaw in open-source server software — Quartz 

That vulnerability, according to a report on the data breach by William Baird & Co., was in a popular open-source software package called Apache Struts, which is a programming framework for building web applications in Java. Two vulnerabilities in Struts have been discovered so far in 2017. One was announced in March, and another was announced earlier this week on Sept. 4. At the moment, it’s unclear which vulnerability the Baird report was referring to.

View the most recent posts on Hobo Signs by Macdrifter or all of the posts in the archive.