The Equifax breach, for instance, was traced back to some vulnerability during the Apache Struts web server computer software. If the company had put in the safety patch for this vulnerability it might have avoided the situation, but at times the computer software update alone is compromised, as was https://www.researchgate.net/publication/365308473_Development_of_Cyber_Attack_Model_for_Private_Network
