Web Application Security News

Scroll down for all the latest web application security news and information.

Browse other Application Security topics

Don’t miss out!

Subscribe to our weekly newsletter for the latest in industry news, expert insights, dedicated information security content and online events.

Inferno Drainer Returns, Stealing Millions from Crypto Wallets

News7 May 2025

Inferno Drainer returns, stealing millions from crypto wallets through phishing on Discord

Smishing Triad Upgrades Tools and Tactics for Global Attacks

News6 May 2025

Claude Chatbot Used for Automated Political Messaging

News1 May 2025

Meta Unveils New Advances in AI Security and Privacy Protection

News1 May 2025

Alongside its new Meta AI app, Facebook’s parent company launched several new products to help secure open-source AI applications

FBI Publishes 42,000 LabHost Phishing Domains

News1 May 2025

New WordPress Malware Masquerades as Plugin

News29 Apr 2025

Phorpiex Botnet Delivers LockBit Ransomware with Automated Tactics

News29 Apr 2025

Security Experts Flag Chrome Extension Using AI Engine to Act Without User Input

News25 Apr 2025

Researchers have found a Chrome extension that can act on the user’s behalf by using a popular AI agent orchestration protocol

ELENOR-corp Ransomware Targets Healthcare Sector

News24 Apr 2025

Blue Shield of California Data Breach Affects 4.7 Million Members

News24 Apr 2025

Don’t miss out!

Subscribe to our weekly newsletter for the latest in industry news, expert insights, dedicated information security content and online events.

Webinars coming up

Closing the Browser Security Gap: Defending Against Modern Web-Based Threats

22 May 2025, 14:00 BST , 09:00 EDT

White papers

Gcore Radar: DDoS Attack Trends Q3 to Q4, 2023

White Paper20 Mar 2024

5 Ways to Strengthen Your Active Directory Password Policy

White Paper30 Oct 2023

Pipedream Chernovite's emerging malware targeting Industrial Control Systems

White Paper19 Aug 2022

On-demand webinars

How to Proactively Remediate Rising Web Application Threats
30 May 2024 Webinar
Experiencing a DDoS Simulation to Enhance Defenses
2 May 2024 Webinar
How to Pair Threat Hunting and Exploit Intelligence for Better Cybersecurity
21 Feb 2024 Webinar
Mastering Software Supply Chain Security with Strategic Defense Mechanisms
30 Nov 2023 Webinar
The Infosecurity Magazine End of Year Xmas Quiz (Feat. The Beer Farmers)
15 Dec 2022 Webinar
How a Threat Response Unit Unmasks a Hacker
1 Dec 2022 Webinar
Updating Your Active Directory Security to the Modern Threat Environment
27 Oct 2022 Webinar
How to Secure Your Applications Against API Attacks
8 Sep 2022 Webinar
Attack Surface Management: Discover and Secure Your Unknown Internet Exposure at Scale
30 Jun 2022 Webinar
Supply Chain Cybersecurity: How to Mitigate Third-Party Risks?
16 Jun 2022 Webinar

What’s hot on Infosecurity Magazine?

Inside DragonForce, the Group Tied to M&S, Co-op and Harrods Hacks

News6 May 2025

Hacker Finds New Technique to Bypass SentinelOne EDR Solution

News8 May 2025

Android Enterprise Launches Device Trust For Enhanced Security

News14 May 2025

Microsoft Fixes Seven Zero-Days in May Patch Tuesday

News14 May 2025

M&S Confirms Customer Data Stolen in Cyber-Attack

News13 May 2025

UK Considers New Enterprise IoT Security Law

News13 May 2025

CISA Reverses Decision on Cybersecurity Advisory Changes

News14 May 2025

UN Launches New Cyber-Attack Assessment Framework

News9 May 2025

Hacker Finds New Technique to Bypass SentinelOne EDR Solution

News8 May 2025

European Vulnerability Database Launches Amid US CVE Chaos

News13 May 2025

DDoS-for-Hire Network Dismantled in International Operation

News7 May 2025

LockBit Ransomware Hacked, Insider Secrets Exposed

News8 May 2025

How to Tackle Rising Cloud Identity Attacks

Webinar27 Mar 2025

Safeguarding Critical Supply Chain Data Through Effective Risk Assessment

Webinar10 Apr 2025

Cyber Resilience in the AI Era: New Challenges and Opportunities

Webinar25 Mar 2025

Reimagining Digital Identity in the Age of AI: Challenges and Innovations

Webinar27 Mar 2025

The Threat Intelligence Imperative: Transforming Risk into Cyber Resilience

Webinar13 Mar 2025

How CISO's Can Survive and Thrive in a Complex Cyber Landscape

Webinar18 Feb 2025

Bayer CISO Kevin Jones Securing Innovative Practices in the Life Science Industry

Interview15 Apr 2025

Verizon DBIR: Small Businesses Bearing the Brunt of Ransomware Attacks

News24 Apr 2025

Zero Trust’s Reality Check: Addressing Implementation Challenges

News Feature19 Mar 2025

How the Channel is Evolving in the Cybersecurity Sector

News Feature18 Apr 2025

FBI Reveals “Staggering” $16.6bn Lost to Cybercrime in 2024

News23 Apr 2025

How CISO's Can Survive and Thrive in a Complex Cyber Landscape

Webinar18 Feb 2025

Podcasts

Eleanor Dallaway and Camille talk about Camille’s journey from Capitol Hill to Google as global head of product security strategy.
29 Apr 2022 Podcast
IntoSecurity Chats Episode 1 - Katie Moussouris
3 Mar 2021 Podcast
Into Security Podcast - Episode 1
15 May 2019 Podcast

Scalllywag Ad Fraud Network Generates 1.4 Billion Bid Requests Daily

News22 Apr 2025

CISA Throws Lifeline to CVE Program with Last-Minute Contract Extension

News17 Apr 2025

Hertz Data Breach Exposes Customer Information in Cleo Zero-Day Attack

News16 Apr 2025

Hertz has confirmed a data breach exposing customer data after a zero-day attack targeting file transfer software from Cleo Communications

Scalper Bots Fueling DVSA Driving Test Black Market

News16 Apr 2025

Chaos Reigns as MITRE Set to Cease CVE and CWE Operations

News16 Apr 2025

Organizations Found to Address Only 21% of GenAI-Related Vulnerabilities

News15 Apr 2025

Pentesting firm Cobalt has found that organizations fix less than half of exploited vulnerabilities, with just 21% of generative AI flaws addressed

Major WordPress Plugin Flaw Exploited in Under 4 Hours

News14 Apr 2025

Digital Certificate Lifespans to Fall to 47 Days by 2029

News14 Apr 2025

WK Kellogg Confirms Data Breach Tied to Cleo Software Exploit

News9 Apr 2025

WK Kellogg breach exposed employee data after attackers exploited flaws in Cleo software

Precision-Validated Phishing Elevates Credential Theft Risks

News9 Apr 2025

Events coming up

Infosecurity Europe 2025

Event3 – 5 Jun 2025

Roundtable @ Infosecurity Europe: The Invisible Frontline, Proactive Approaches to Browser Defense

Magazine Event11:00 – 12:30 BST, 3 Jun 2025

Next-gen infosec

How to Prevent Data Leakages

Next-Gen11 Aug 2023

Top Cloud Misconceptions that Could Damage Your Organization

Next-Gen4 Aug 2023

Improve Asset Visibility in OT Security With Hybrid AI-Cloud Approaches

Next-Gen21 Jul 2023