Computerworld

Using Tomcat with Apache httpd

It is advisable to run Tomcat standalone, not connected through Apache httpd, because you will lose at least 50% of Tomcat’s response performance by proxying all requests through an Apache httpd ...
Bleeping Computer

Active Scans for Apache Tomcat Ghostcat Vulnerability Detected, Patch Now

Ongoing scans for Apache Tomcat servers unpatched against the Ghostcat vulnerability that allows potential attackers to take over servers have been detected over the weekend. As cyber threat ...
ZDNet

Ghostcat bug impacts all Apache Tomcat versions released in the last 13 years

Apache Tomcat servers released in the last 13 years are vulnerable to a bug named Ghostcat that can allow hackers to take over unpatched systems. Discovered by Chinese cybersecurity firm Chaitin Tech, ...
InfoQ

Apache Tomcat 11.0 Delivers Support for Virtual Threads and Jakarta EE 11

Unlock the full InfoQ experience by logging in! Stay updated with your favorite authors and topics, engage with content, and download exclusive resources. Ramya Krishnamoorthy shares a detailed case ...
Bleeping Computer

Latest Apache Tomcat news

A coordinated campaign of brute-force attacks using hundreds of unique IP addresses targets Apache Tomcat Manager interfaces exposed online. A critical remote code execution (RCE) vulnerability in ...
Threat Post

Apache Tomcat Exploit Poised to Pounce, Stealing Files

Researchers said that a working exploit for CVE-2020-1938 leaked on GitHub makes is a snap to compromise webservers. A vulnerability in the popular Apache Tomcat web server is ripe for active attack, ...