Protect your environment
NOW!

Apache Struts CVE-2017-5638 - Vulnerability

Unfortunately, the vulnerability was not fixed in a reasonable time which lead to a compromise of customers data including: Name, Date of Birth, Social Security Numbers, Address information, Driver license number, Payment card number and expiration date, Tax IDs.

Remote Access Trojan (RAT) Malware

During the course of acquiring Starwood Hotel multiple incidents with malware and an infection of a POS system (Point of Sale) which ended in stolen credit card information. This allowed malicious actors to make unauthorized purchases with stolen credit cards.

Two Factor Authentication Missed

During a standard server upgrade that would have required two factor authentication, some outdated servers were not using two factor authentication. The malicious actors used stolen credentials to access JPMC's network.