Over a million developers have joined DZone.
{{announcement.body}}
{{announcement.title}}

What You Should Know About the Latest Struts2 Vulnerability [Video]

DZone's Guide to

What You Should Know About the Latest Struts2 Vulnerability [Video]

So, it turns out that the recent Equifax hack had direct ties to our old friend, Struts2. Watch this video interview to get the opinion of two security experts.

· Security Zone ·
Free Resource

Learn how integrating security into DevOps to deliver "DevSecOps" requires changing mindsets, processes and technology.

UPDATE: On Friday, September 8th, the massive breach of 143 million consumer records at Equifax was directly tied to Struts2.

With the multiple announcements this week about struts2 vulnerabilities, we spoke with Brian Fox, CTO of Sonatype and Matt Konda, Chair, OWASP Board of Directors about what the specifics of the announcement cover and what you can do to find and protect your applications from those vulnerabilities.

The interview is in two formats. You can listen to the OWASP 24/7 Podcast, or you can view the interview below.


Learn how enterprises are using tools to automate security in their DevOps toolchain with these DevSecOps Reference Architectures.

Topics:
equifax ,owasp ,security ,struts2 ,vulnerabilities

Published at DZone with permission of

Opinions expressed by DZone contributors are their own.

{{ parent.title || parent.header.title}}

{{ parent.tldr }}

{{ parent.urlSource.name }}