Over a million developers have joined DZone.
{{announcement.body}}
{{announcement.title}}

What You Should Know About the Latest Struts2 Vulnerability [Video]

DZone's Guide to

What You Should Know About the Latest Struts2 Vulnerability [Video]

So, it turns out that the recent Equifax hack had direct ties to our old friend, Struts2. Watch this video interview to get the opinion of two security experts.

· Security Zone
Free Resource

Address your unique security needs at every stage of the software development life cycle. Brought to you in partnership with Synopsys.

UPDATE: On Friday, September 8th, the massive breach of 143 million consumer records at Equifax was directly tied to Struts2.

With the multiple announcements this week about struts2 vulnerabilities, we spoke with Brian Fox, CTO of Sonatype and Matt Konda, Chair, OWASP Board of Directors about what the specifics of the announcement cover and what you can do to find and protect your applications from those vulnerabilities.

The interview is in two formats. You can listen to the OWASP 24/7 Podcast, or you can view the interview below.


Find out how Synopsys can help you build security and quality into your SDLC and supply chain. We offer application testing and remediation expertise, guidance for structuring a software security initiative, training, and professional services for a proactive approach to application security.

Topics:
equifax ,owasp ,security ,struts2 ,vulnerabilities

Published at DZone with permission of Mark Miller, DZone MVB. See the original article here.

Opinions expressed by DZone contributors are their own.

{{ parent.title || parent.header.title}}

{{ parent.tldr }}

{{ parent.urlSource.name }}