Apache - Security Intelligence

Application security specialist using a digital tablet in an office.

article

New Year, New Risks: 3 Application Security Resolutions You Should Adopt in 2019

To ring in the new year, application security teams should resolve to implement more security into the development process, prioritize consumer trust and pay more attention to false negatives.

January 4, 2019 | By Rob Cuddy

article

Illustration of IoT malware infecting multiple devices around the world.

news

Mirai and Gafgyt IoT Malware Now Targeting SonicWall’s GMS and Apache Struts Exploits

Malware authors have released modified versions of the Mirai and Gafgyt IoT malware that are capable of targeting vulnerabilities affecting SonicWall's GMS and Apache Struts.

September 14, 2018 | By David Bisson

news

article

Don’t Just Put Out the Zero-Day Fire — Get Rid of the Fuel

The best way to remediate zero-day threats is to focus on proactively assessing and patching the vulnerabilities that facilitate them.

October 17, 2017 | By Michelle Alvarez

article

A smartphone and laptop displaying a skull and crossbones.

article

Worried About Apache Struts? Stay One Step Ahead of Endpoint Attacks

Security teams needs advanced visibility into all endpoints across the organization to prevent endpoint attacks such as the recent Apache Struts exploit.

September 25, 2017 | By Antonio Gallotti

article

news

Speedy Security Breach: Threat Actors Develop Apache Exploit Within Hours of Disclosure

Even with a patch available for the new Struts vulnerability, threat actors developed new exploits within hours and coordinated security breach attacks.

September 11, 2017 | By Douglas Bonderud

news

A large tree with a shot of its roots underground.

news

Hidden PHP Rootkits Unearthed, Putting Apache Modules at Risk

A security researcher discovered how to create malicious Apache modules, giving cyberattackers a new way to tap into and control web servers.

June 20, 2017 | By Mark Samuels

news

Adhesive bandages on a computer keyboard.

article

The Apache Struts 2 Vulnerability and the Importance of Patch Management

The disclosure of an Apache Struts 2 vulnerability made the framework a lucrative target and highlighted the importance of patch management.

April 25, 2017 | By Koen Van Impe

article

Web server DDoS attacks can occur in a number of ways, and they may stem from anyone from cybercriminals to bored teenagers. This variety makes them difficult to prepare for, but it is possible to improve a defense system with the help of certain tools.

article

Defending Against Apache Web Server DDoS Attacks

Here's what you need to know about Web server DDoS attacks, how to defend against them and what tools are available to help in your efforts.

December 9, 2015 | By Koen Van Impe

article

Analytis of Struts Vulnerabilities in Parameters and Cookie Interceptors

article

Analysis of Recent Struts Vulnerabilities in Parameters and Cookie Interceptors, Their Impact and Exploitation

An analysis of the recent Struts vulnerabilities in parameters and Cookie Interceptors, their impact and one possible way to exploit them.

May 16, 2014 | By Zubair Ashraf

article

Many of Baltimore’s City Services Still Offline Two Weeks After Ransomware Attack

Hundreds of Thousands of Users Targeted Daily With Would-Be WannaCry Imitators

Phishing Campaign Delivers Multi-Feature, Open-Source Babylon RAT

More Than 100 US Businesses Affected by Ryuk Ransomware Since August 2018, Finds FBI

Voices of Security

X-Force Red in Action

A Secure Start

On the Front Line With IBM X-Force IRIS

High Stakes, Rising Risks: The Ripple Effects of Cybersecurity in the Healthcare Sector

Industrial Control Systems Security: To Test or Not to Test?

Challenges and Opportunities to Close the Cybersecurity Gap in the Financial Services Industry

GozNym Closure Comes in the Shape of a Europol and DOJ Arrest Operation

The Decline of Hacktivism: Attacks Drop 95 Percent Since 2015

Published Exploits for Accessing SAP Systems Put Security Teams on Alert

Penetration Testing Versus Red Teaming: Clearing the Confusion

Podcast: Lessons from a Gray Beard: Transitioning From the Military to Cybersecurity

Podcast: Foundations for a Winning Operational Technology (OT) Security Strategy

Podcast: ‘You Can Never Have Too Much Encryption’

Podcast: Automating Cyber Resilience Best Practices With Dr. Larry Ponemon

Webinar: Guardium Tech Talk: An Integrated Approach to Data Risk Management

Webinar: The Debrief: Using Tools and Methods From the Intelligence Community to Stop Threats to Your Organization

Webinar: Operational Technology Security in the Age of Digital Transformation

Webinar: Leaders & Laggards: The Latest Findings from the Ponemon Institute’s Study on the Cyber Resilient Organization

Tag: Apache

New Year, New Risks: 3 Application Security Resolutions You Should Adopt in 2019

Mirai and Gafgyt IoT Malware Now Targeting SonicWall’s GMS and Apache Struts Exploits

Don’t Just Put Out the Zero-Day Fire — Get Rid of the Fuel

Worried About Apache Struts? Stay One Step Ahead of Endpoint Attacks

Speedy Security Breach: Threat Actors Develop Apache Exploit Within Hours of Disclosure

Hidden PHP Rootkits Unearthed, Putting Apache Modules at Risk

The Apache Struts 2 Vulnerability and the Importance of Patch Management

Defending Against Apache Web Server DDoS Attacks

Analysis of Recent Struts Vulnerabilities in Parameters and Cookie Interceptors, Their Impact and Exploitation