IT Professionals:
The University Information Security Office (UISO) is aware of exploitation attempts in the wild using the recently published Apache Struts vulnerability. It is only a matter of time before attackers target IU systems. You must patch your systems immediately to prevent exploitation.
Please upgrade Struts to versions 2.5.33, 6.3.0.2, or later. If you are unable to upgrade, please email the UISO to discuss mitigation strategies.
If you suspect that a machine is compromised, please report as an emergency IT incident as soon as possible.
–IT Community Partnerships on behalf of the University Information Security Office