The Bug that caused the Equifax Breach was just two months old

“Equifax has been deeply examining the scope of the interference with the support of a leading, independent cyber security firm to discover what information was obtained and who have been impacted,” company executives wrote in an update posted online. “We understand that offenders exploited a US website employment vulnerability. The vulnerability was Apache Struts CVE-2017-5638. We remain to work with law requirement as part of our illegal investigation, and have experienced indicators of agreement with law enforcement.”

Take your time to comment on this article.

Related posts

Insignary Closes SBOM Accuracy Gap With Binary-Level Clarity for Regulatory Risk

Amazon Q’s MCP Flaw Is an Industry Warning: AI Tools Still Lack Workspace Trust Standards

SpyCloud Report Finds Phishing Attacks Surge as Employee Data Is Exposed at 86% of Fortune 100 Companies