Web Application Security News

Scroll down for all the latest web application security news and information.

Browse other Application Security topics

Don’t miss out!

Subscribe to our weekly newsletter for the latest in industry news, expert insights, dedicated information security content and online events.

Blind Eagle Targets Colombian Government with Malicious .url Files

News11 Mar 2025

Blind Eagle has been running campaigns targeting the Colombian government with malicious .url files and phishing attacks

DDoS Blamed as X Suffers Multiple Outages

News11 Mar 2025

Pro-Palestine Dark Storm Team group claims responsibility for major DDoS attacks on X

Vulnerability in Chaty Pro Plugin Exposes 18,000 WordPress Sites

News6 Mar 2025

Nonprofits Face Surge in Cyber-Attacks as Email Threats Rise 35%

News5 Mar 2025

Winos 4.0 Malware Targets Taiwan With Email Impersonation

News27 Feb 2025

Essential Addons for Elementor XSS Vulnerability Discovered

News24 Feb 2025

Malicious Ads Target Freelance Developers via GitHub

News20 Feb 2025

WordPress Plugin Vulnerability Exposes 90,000 Sites to Attack

News19 Feb 2025

OpenSSH Flaws Expose Systems to Critical Attacks

News18 Feb 2025

Evolving Snake Keylogger Variant Targets Windows Users

News18 Feb 2025

A new Snake Keylogger variant, responsible for over 280 million blocked infection attempts worldwide, has been identified targeting Windows users

Don’t miss out!

Subscribe to our weekly newsletter for the latest in industry news, expert insights, dedicated information security content and online events.

White papers

Gcore Radar: DDoS Attack Trends Q3 to Q4, 2023

White Paper20 Mar 2024

5 Ways to Strengthen Your Active Directory Password Policy

White Paper30 Oct 2023

Pipedream Chernovite's emerging malware targeting Industrial Control Systems

White Paper19 Aug 2022

On-demand webinars

How to Proactively Remediate Rising Web Application Threats
30 May 2024 Webinar
Experiencing a DDoS Simulation to Enhance Defenses
2 May 2024 Webinar
How to Pair Threat Hunting and Exploit Intelligence for Better Cybersecurity
21 Feb 2024 Webinar
Mastering Software Supply Chain Security with Strategic Defense Mechanisms
30 Nov 2023 Webinar
The Infosecurity Magazine End of Year Xmas Quiz (Feat. The Beer Farmers)
15 Dec 2022 Webinar
How a Threat Response Unit Unmasks a Hacker
1 Dec 2022 Webinar
Updating Your Active Directory Security to the Modern Threat Environment
27 Oct 2022 Webinar
How to Secure Your Applications Against API Attacks
8 Sep 2022 Webinar
Attack Surface Management: Discover and Secure Your Unknown Internet Exposure at Scale
30 Jun 2022 Webinar
Supply Chain Cybersecurity: How to Mitigate Third-Party Risks?
16 Jun 2022 Webinar

What’s hot on Infosecurity Magazine?

Albabat Ransomware Evolves to Target Linux and macOS

News21 Mar 2025

Fortinet Vulnerability Exploited in Ransomware Attack, CISA Warns

News19 Mar 2025

NCSC Sets 2035 Deadline for Post-Quantum Cryptography Migration

News20 Mar 2025

Rooted Devices 250 Times More Vulnerable to Compromise

News20 Mar 2025

Nigerian 'Yahoo Boys' Behind Social Media Sextortion Surge in the US

News29 Jan 2024

UK CNI Security Leaders Express Confidence in Cybersecurity, Despite 95% Breach Rate

News20 Mar 2025

Gartner Warns Agentic AI Will Accelerate Account Takeovers

News19 Mar 2025

National Highways CSO Talks Novel Solutions to Cybersecurity in the Public Sector

Interview17 Mar 2025

AI Agents and the Evolving Landscape of Digital Identity

Webinar27 Mar 2025, 16:00 GMT , 12:00 EDT, 09:00 PDT

Attackers Use Fake CAPTCHAs to Deploy Lumma Stealer RAT

News21 Mar 2025

Fraudsters Impersonate Clop Ransomware to Extort Businesses

News14 Mar 2025

752,000 Browser Phishing Attacks Mark 140% Increase YoY

News19 Mar 2025

The Threat Intelligence Imperative: Transforming Risk into Cyber Resilience

Webinar13 Mar 2025

Auditing AI Risk: Essential Strategies for IT & Compliance Leaders

Webinar23 Jan 2025

Enhancing Software Supply Chain Management: A DORA-Focused Approach

Webinar30 Jan 2025

How to Manage Your Risks and Protect Your Financial Data

Webinar30 Oct 2024

Alert Fatigue: What Are You and Your Security Teams Missing?

Webinar5 Dec 2024

New Cyber Regulations: What it Means for UK and EU Businesses

Webinar10 Oct 2024

Gatwick Airport's Cybersecurity Chief on Supply Chain Risks and CrowdStrike Outage

Interview21 Nov 2024

You're Hired! The Truth About Certifications in Cybersecurity Careers

News Feature2 Dec 2024

T-Mobile Claims Salt Typhoon Did Not Access Customer Data

News28 Nov 2024

Darknet Services Fuel Holiday Scams and E-Commerce Exploits

News26 Nov 2024

Top 10 Cyber-Attacks of 2024

News Feature2 Dec 2024

Google Deindexes Chinese Propaganda Network

News25 Nov 2024

Podcasts

Eleanor Dallaway and Camille talk about Camille’s journey from Capitol Hill to Google as global head of product security strategy.
29 Apr 2022 Podcast
IntoSecurity Chats Episode 1 - Katie Moussouris
3 Mar 2021 Podcast
Into Security Podcast - Episode 1
15 May 2019 Podcast

Astaroth Phishing Kit Bypasses 2FA Using Reverse Proxy Techniques

News13 Feb 2025

OpenAI Was Not Breached, Say Researchers

News11 Feb 2025

BadIIS Malware Exploits IIS Servers for SEO Fraud

News10 Feb 2025

Georgia Hospital Alerts 120,000 Individuals of Data Breach

News10 Feb 2025

WordPress ASE Plugin Vulnerability Threatens Site Security

News6 Feb 2025

Patchstack urges admins to patch new WordPress ASE plugin vulnerability that lets users restore previous admin privileges

Sophisticated Phishing Attack Bypasses Microsoft ADFS MFA

News4 Feb 2025

A sophisticated phishing campaign targeting Microsoft ADFS has been observed, affecting more than 150 organizations

Casio and Others Hit by Magento Web Skimmer Campaign

News4 Feb 2025

Jscambler claims at least 17 sites have been infected with web skimmers, including Casio’s

High-profile X Accounts Targeted in Phishing Campaign

News3 Feb 2025

Threat Actors Target Public-Facing Apps for Initial Access

News31 Jan 2025

DeepSeek's Flagship AI Model Under Fire for Security Vulnerabilities

News31 Jan 2025

Events coming up

Infosecurity Europe 2025

Event3 – 5 Jun 2025

Next-gen infosec

How to Prevent Data Leakages

Next-Gen11 Aug 2023

Top Cloud Misconceptions that Could Damage Your Organization

Next-Gen4 Aug 2023

Improve Asset Visibility in OT Security With Hybrid AI-Cloud Approaches

Next-Gen21 Jul 2023