The Equifax breach, such as, was traced back again into a vulnerability while in the Apache Struts World-wide-web server software. If the company had mounted the security patch for this vulnerability it might have prevented the problem, but from time to time the program update by itself is compromised, https://ieeexplore.ieee.org/document/9941250