Infosecurity Magazine

Web Application Security News

Scroll down for all the latest web application security news and information.

Latest News and Features

Over 80% of Ethical Hackers Now Use AI

News

Researchers Uncover “Haxor” SEO Poisoning Marketplace

News

Fortra researchers have discovered a new SEO poisoning operation known as “HaxorSEO”

Critical Appsmith Flaw Enables Account Takeovers

News

RealHomes CRM Plugin Flaw Affected 30,000 WordPress Sites

News

Security flaw in RealHomes CRM plugin allowed file uploads; patches released for 30,000+ sites

Zero-Day Exploits Surge, Nearly 30% of Flaws Attacked Before Disclosure

News

LastPass Warns of Phishing Campaign Attempting to Steal Master Passwords

News

Phishing and Spoofed Sites Remain Primary Entry Points For Olympics

News

Peruvian Loan Scam Harvests Cards and PINs via Fake Applications

News

Loan phishing operation in Peru is stealing card info by impersonating financial institutions

Experts Welcome Global Cybersecurity Vulnerability Enumeration Launch

News

Chainlit Security Flaws Highlight Infrastructure Risks in AI Apps

News

Webinars Coming Up

How To Enhance Security Operations with AI-Powered Defenses

White Papers

Gcore Radar: DDoS Attack Trends Q3 to Q4, 2023

White Paper

5 Ways to Strengthen Your Active Directory Password Policy

White Paper

Pipedream Chernovite's emerging malware targeting Industrial Control Systems

White Paper

On-Demand Webinars

  • Securing M365 Data and Identity Systems Against Modern Adversaries
  • Modernise Application Delivery for the New Era
  • Closing the Browser Security Gap: Defending Against Modern Web-Based Threats
  • How to Proactively Remediate Rising Web Application Threats
  • Experiencing a DDoS Simulation to Enhance Defenses
  • How to Pair Threat Hunting and Exploit Intelligence for Better Cybersecurity

Podcasts

  • Eleanor Dallaway and Camille talk about Camille’s journey from Capitol Hill to Google as global head of product security strategy.
  • IntoSecurity Chats Episode 1 - Katie Moussouris
  • Into Security Podcast - Episode 1

More news and features

Malicious Google Chrome Extensions Hijack Workday and Netsuite

News

ICE Agent Doxxing Site DDoS-ed Via Russian Servers

News

Hackers Use Fake PayPal Notices to Steal Credentials, Deploy RMMs

News

Phishing attacks have been identified using fake PayPal alerts to exploit remote monitoring and management tools

GoBruteforcer Botnet Targets Linux Servers

News

China-Linked UAT-7290 Targets Telecom Networks in South Asia

News

Ilya Lichtenstein Released Early After Bitfinex Hack Conviction

News

VVS Stealer Uses Advanced Obfuscation to Target Discord Users

News

A new Python-based malware called VVS stealer has been identified, targeting Discord users with stealthy techniques to steal data

Experts Trace $35m in Stolen Crypto to LastPass Breach

News

Motors WordPress Vulnerability Exposes Sites to Takeover

News

A critical flaw in the Motors WordPress theme affecting more than 20,000 installations allows low-privileged users to gain full control of websites

New “Lies-in-the-Loop” Attack Undermines AI Safety Dialogs

News

Blogs

Zero Trust and Active Directory: What Modern AD Audits Reveal

Blog

How to Recover Corrupt MDF File from SQL Server

Blog

Next-Gen Infosec

How to Prevent Data Leakages

Next-Gen

Top Cloud Misconceptions that Could Damage Your Organization

Next-Gen

Improve Asset Visibility in OT Security With Hybrid AI-Cloud Approaches

Next-Gen