Apache Struts 2 has become the target of hackers looking to exploit vulnerabilities. This web application framework is used by government agencies, internet services providers and banks. The hackers are using malware to try and exploit the holes within the application.
Ars Technica reports many exploitation attempts have been documented, even though a patch was issued on March 6th. It only took a couple of days for exploits to become public after the patch was issued. Over 500 unique IP addresses were trying to exploit the bug with more than half coming from China.