Early and ambiguous comments about the Equifax breach pointed to an Apache Struts vulnerability, with the suggestion that the vulnerability the attackers exploited was CVE-2017-9805, a bug Apache fixed on September 5, 2017. But according to Contrast Security and other observers, it now seems likelier that the hackers exploited CVE-2017-5638, a vulnerability that was patched in March of this year.
The Equifax breach continues to draw litigation from the plaintiff's bar and regulatory inquests from state and Federal government bodies. Its share price dropped another 8% yesterday (but its fall is providing a healthy tailwind for cybersecurity equities).
The persons unknown who demanded ransom from Equifax with a September 15 deadline now appear to be grifters unconnected with the hack. There's been no further public word on attribution.
MongoDB believes the recent wave of ransom attacks on users of its database products have a common cause: failure to set passwords for administrative accounts. The vendor says it hopes to improve its customers' security awareness.
Armis Labs announces its discovery of a Bluetooth-based attack vector affecting major operating systems. (They call it "BlueBorne.")
ICS-CERT has warned that Medfusion Syringe Pumps could be vulnerable to remote manipulation. Mitigations are available.
ZeroFOX research suggests that bots may be better than humans at getting their marks to swallow social media clickbait.
The US Department of Energy has announced research grants to improve electrical grid cyber-resilience.
A resurgent al Qaeda, one of its Pakistani spinoffs, and the Iranian government are vying for jihadist mindshare online.