Threat Post

Active Campaign Exploits Critical Apache Struts 2 Flaw in the Wild

A Monero cryptomining script is spreading in an ongoing campaign using the recently disclosed critical remote command-execution flaw. It was only a matter of time before attacks were seen in the wild, ...
Threat Post

Attacks Heating Up Against Apache Struts 2 Vulnerability

Apache administrators are urged to immediately upgrade the Struts 2 web application framework to address a remote code execution flaw under public attack. Public attacks and scans looking for exposed ...
Infosecurity-magazine.com

Apache Warns of Critical Vulnerability in Struts 2

Apache has warned customers of a critical remote code execution (RCE) vulnerability in its popular Struts 2 framework. Apache Struts 2 is an open-source web application framework for developing Java ...
ZDNet

Cryptojacking campaign exploiting Apache Struts 2 flaw kills off the competition

It has only been two weeks since a critical vulnerability in Apache Struts 2 was revealed to the public, but this hasn't stopped cybercriminals from rapidly adding proof-of-concept (PoC) attack code ...