Web Application Security News

Scroll down for all the latest web application security news and information.

Browse other Application Security topics

Don’t miss out!

Subscribe to our weekly newsletter for the latest in industry news, expert insights, dedicated information security content and online events.

Sophisticated TA397 Malware Targets Turkish Defense Sector

News17 Dec 2024

Sophisticated phishing attack targeting Turkey’s defense sector revealed TA397’s advanced tactics

Fake Captcha Campaign Highlights Risks of Malvertising Networks

News16 Dec 2024

Security Flaws in WordPress Woffice Theme Prompts Urgent Update

News12 Dec 2024

SmokeLoader Malware Campaign Targets Companies in Taiwan

News2 Dec 2024

SmokeLoader malware identified targeting Taiwanese firms via phishing, exploiting Microsoft Office vulnerabilities

Malicious Actors Exploit ProjectSend Critical Vulnerability

News28 Nov 2024

Attack Group APT-C-60 Targets Japan Using Trusted Platforms

News27 Nov 2024

New DDoS Campaign Exploits IoT Devices and Server Misconfigurations

News26 Nov 2024

Darknet Services Fuel Holiday Scams and E-Commerce Exploits

News26 Nov 2024

MITRE Unveils Top 25 Most Critical Software Flaws

News22 Nov 2024

The 25 most dangerous software weaknesses between June 2023 and June 2024 are responsible for almost 32,000 vulnerabilities

Hackers Hijack Jupyter Servers for Sport Stream Ripping

News20 Nov 2024

Don’t miss out!

Subscribe to our weekly newsletter for the latest in industry news, expert insights, dedicated information security content and online events.

White papers

Gcore Radar: DDoS Attack Trends Q3 to Q4, 2023

White Paper20 Mar 2024

5 Ways to Strengthen Your Active Directory Password Policy

White Paper30 Oct 2023

Pipedream Chernovite's emerging malware targeting Industrial Control Systems

White Paper19 Aug 2022

On-demand webinars

How to Proactively Remediate Rising Web Application Threats
30 May 2024 Webinar
Experiencing a DDoS Simulation to Enhance Defenses
2 May 2024 Webinar
How to Pair Threat Hunting and Exploit Intelligence for Better Cybersecurity
21 Feb 2024 Webinar
Mastering Software Supply Chain Security with Strategic Defense Mechanisms
30 Nov 2023 Webinar
The Infosecurity Magazine End of Year Xmas Quiz (Feat. The Beer Farmers)
15 Dec 2022 Webinar
How a Threat Response Unit Unmasks a Hacker
1 Dec 2022 Webinar
Updating Your Active Directory Security to the Modern Threat Environment
27 Oct 2022 Webinar
How to Secure Your Applications Against API Attacks
8 Sep 2022 Webinar
Attack Surface Management: Discover and Secure Your Unknown Internet Exposure at Scale
30 Jun 2022 Webinar
Supply Chain Cybersecurity: How to Mitigate Third-Party Risks?
16 Jun 2022 Webinar

What’s hot on Infosecurity Magazine?

New Malware Can Kill Engineering Processes in ICS Environments

News19 Dec 2024

Top 10 Cyber-Attacks of 2024

News Feature2 Dec 2024

US Organizations Still Using Kaspersky Products Despite Ban

News19 Dec 2024

Phishing Attacks Double in 2024

News18 Dec 2024

Crypto-Hackers Steal $2.2bn as North Koreans Dominate

News19 Dec 2024

Recorded Future CEO Calls Russia’s “Undesirable” Listing a “Compliment”

News19 Dec 2024

Cybercriminals Exploit Google Calendar to Spread Malicious Links

News17 Dec 2024

New APIs Discovered by Attackers in Just 29 Seconds

News17 Dec 2024

US Unveils New National Cyber Incident Response Plan

News17 Dec 2024

Texas Tech University Data Breach Impacts 1.4 Million

News17 Dec 2024

Top 10 Cyber-Attacks of 2024

News Feature2 Dec 2024

YouTube Creators Targeted in Global Phishing Campaign

News16 Dec 2024

Alert Fatigue: What Are You and Your Security Teams Missing?

Webinar5 Dec 2024

Dispelling the Myths of Defense-Grade Cybersecurity

Webinar4 Dec 2024

How to Manage Your Risks and Protect Your Financial Data

Webinar30 Oct 2024

New Cyber Regulations: What it Means for UK and EU Businesses

Webinar10 Oct 2024

Learn Key Strategies for Industrial Data Security

Webinar27 Jun 2024

The Future of Fraud: Defending Against Advanced Account Attacks

Webinar18 Jul 2024

Gatwick Airport's Cybersecurity Chief on Supply Chain Risks and CrowdStrike Outage

Interview21 Nov 2024

You're Hired! The Truth About Certifications in Cybersecurity Careers

News Feature2 Dec 2024

T-Mobile Claims Salt Typhoon Did Not Access Customer Data

News28 Nov 2024

Darknet Services Fuel Holiday Scams and E-Commerce Exploits

News26 Nov 2024

Top 10 Cyber-Attacks of 2024

News Feature2 Dec 2024

Google Deindexes Chinese Propaganda Network

News25 Nov 2024

Podcasts

Eleanor Dallaway and Camille talk about Camille’s journey from Capitol Hill to Google as global head of product security strategy.
29 Apr 2022 Podcast
IntoSecurity Chats Episode 1 - Katie Moussouris
3 Mar 2021 Podcast
Into Security Podcast - Episode 1
15 May 2019 Podcast

Surge in DocuSign Phishing Attacks Target US State Contractors

News18 Nov 2024

watchTowr Finds New Zero-Day Vulnerability in Fortinet Products

News15 Nov 2024

API Security in Peril as 83% of Firms Suffer Incidents

News14 Nov 2024

Hive0145 Targets Europe with Advanced Strela Stealer Campaigns

News13 Nov 2024

Hive0145 is targeting Spain, Germany, Ukraine with Strela Stealer malware in invoice phishing tactic

Amazon MOVEit Leaker Claims to Be Ethical Hacker

News13 Nov 2024

Phishing Tool GoIssue Targets Developers on GitHub

News12 Nov 2024

New phishing tool GoIssue targets GitHub, enabling mass phishing, and has been linked to the GitLoker extortion campaign

New Remcos RAT Variant Targets Windows Users Via Phishing

News11 Nov 2024

Cyber-Attack on Microlise Disrupts DHL and Serco Tracking Services

News6 Nov 2024

ClickFix Exploits Users with Fake Errors and Malicious Code

News5 Nov 2024

ClickFix exploits fake error messages across multiple platforms, such as Google Meet and Zoom

Cybercriminals Exploit DocuSign APIs to Send Fake Invoices

News4 Nov 2024

Events coming up

Infosecurity Europe 2025

Event3 – 5 Jun 2025

Next-gen infosec

How to Prevent Data Leakages

Next-Gen11 Aug 2023

Top Cloud Misconceptions that Could Damage Your Organization

Next-Gen4 Aug 2023

Improve Asset Visibility in OT Security With Hybrid AI-Cloud Approaches

Next-Gen21 Jul 2023