by John

Posted in Infosec

by John

Posted in AI & Machine Learning, Cool-Stuff, Infosec, Vendors

by John

Posted in Exploits & Attacks, Infosec, Supply Chain

by John

US-CERT has released a security update regarding a vulnerability in Apache Struts versions 2.5 to 2.5.14. The Apache Software Foundation released Apache Security Bulletins S2-054 and S2-055, which respectively address CVE-2017-15707 and CVE-2017-7525.

The vulnerabilities could allow a remote, unauthenticated attacker to perform a denial-of-service (DOS) by submitting malicious JSON data. The vulnerable systems use an outdated JSON-lib library with the Struts REST plugin.

US-CERT encourages users and administrators to upgrade to Struts 2.5.14.1 Read More

Posted in Exploits & Attacks, Infosec

by John

Title: “A Corporate Guide to Surviving Cyberwarfare Through Cyber Resiliency”

My presentation from Hacker Halted – Atlanta, GA – October 9, 2017

Please download (PDF): http://johndjohnson.com/resources/JOHNSON.HHALTED.OCT2017.pdf

Posted in Infosec, Presentations Tagged with: , , , , , ,

by John

Join us for our first Cyber Town Hall along with the Quad Cities Chamber of Commerce, Quad Cities Cybersecurity Alliance and the QC Manufacturing Innovation Hub – For more information and to register:

Posted in Community, Events