A huge security breach at credit reporting company Equifax has exposed sensitive information, such as names, Social Security numbers, birth dates, addresses, credit card numbers and the numbers of some driver's licenses, of up to 143 million Americans. Unlike other data breaches, those affected by the breach may not even know they are customers of the company.
The breach happened between mid-May and July, but was discovered on July 29. Equifax said it will send notices in the mail to people whose credit card numbers or dispute records were breached. The company said it found no evidence that consumers in other countries were affected beyond the U.S., U.K. and Canada.
References: Fact Checking the Equifax Data Breach Story | Equifax Breach Could Affect 143 Million U.S. Consumers | Equifax Data Breach Could Create Lifelong Identity Theft Threat | What You Need to Know About the Equifax Data Breach
Security researchers have discovered a critical remote code execution vulnerability in the popular Apache Struts web application framework, allowing a remote attacker to run malicious code on the affected servers.
The vulnerability is incredibly easy for an attacker to exploit. Successful exploitation of the vulnerability could allow an attacker to take full control of the affected server, eventually letting the attacker infiltrate into other systems on the same network.
References: Apache Struts Flaw Could See Hackers Target Lockheed Martin, Vodafone and Other Fortune 100 Firms | Security Flaw in Apache Struts Exposes Web Servers to Hacking | Another Critical Vulnerability in Apache Struts 2 Allows Criminals to Hack Web Servers
*IP addresses provided by Recorded Future.
Want to learn about Alert Logic products in more detail? Call us direct at +1.877.484.8383, for the UK call +44 (0) 203 011 5533, or complete this form. An Alert Logic representative will contact you soon.