Aspect Security's AppSec Blog

Shadow Bank pwn: Cheating a Hackathon for Fun and Profit

Find me on:

LinkedIn

4/20/2017

Apache Struts and equifax - real life consequences

9/14/2017 Update: The Apache Struts vulnerability discussed in this blog was found to be the flaw that led to the Equifax data breach. While hacking games are fun, it's a reminder that legitimate applications have these vulnerabilities, with real-life consequences and extremely high stakes. For more details on the Apache Struts vulnerability and a hackathon where we used it to own an application server, continue reading.