Web server

Equifax blames months-old web server flaw for enabling hack

Equifax said Wednesday that a months-old but apparently unpatched web server vulnerability enabled the massive data breach that exposed the personal financial information of about half of the US population. Equifax said it identified Apache Struts CVE-2017-5638, a flaw first identified on March 6, as the gateway to the hack. The company located the problem […]