Infosecurity Magazine

Web Application Security News

Scroll down for all the latest web application security news and information.

Latest News and Features

New GhostFrame Phishing Framework Hits Over One Million Attacks

News

Yearn Finance yETH Pool Hit by $9M Exploit

News

A critical vulnerability in Yearn Finance's yETH pool allowed an attacker to steal around $9m

ShadyPanda's Seven-Year Campaign Infects 4.3M Chrome and Edge Users

News

Scattered Lapsus$ Hunters Take Aim At Zendesk Users

News

New phishing domains point to a campaign from the notorious Scattered Lapsus$ Hunters collective

Cyber-Attack Disrupts OnSolve CodeRED Emergency Notification System

News

Smishing Triad Impersonation Campaigns Expand Globally

News

Flaws Expose Risks in Fluent Bit Logging Agent

News

CISA Issues New Guidance on Bulletproof Hosting Threat

News

CISA launches guide to combat cybercrime via bulletproof hosting, recommending measures for ISPs

Eternidade Stealer Trojan Fuels Aggressive Brazil Cybercrime

News

China-Aligned UTA0388 Uses AI Tools in Global Phishing Campaigns

News

White Papers

Gcore Radar: DDoS Attack Trends Q3 to Q4, 2023

White Paper

5 Ways to Strengthen Your Active Directory Password Policy

White Paper

Pipedream Chernovite's emerging malware targeting Industrial Control Systems

White Paper

On-Demand Webinars

  • Modernise Application Delivery for the New Era
  • Closing the Browser Security Gap: Defending Against Modern Web-Based Threats
  • How to Proactively Remediate Rising Web Application Threats
  • Experiencing a DDoS Simulation to Enhance Defenses
  • How to Pair Threat Hunting and Exploit Intelligence for Better Cybersecurity
  • Mastering Software Supply Chain Security with Strategic Defense Mechanisms
  • The Infosecurity Magazine End of Year Xmas Quiz (Feat. The Beer Farmers)
  • How a Threat Response Unit Unmasks a Hacker
  • Updating Your Active Directory Security to the Modern Threat Environment
  • How to Secure Your Applications Against API Attacks

Podcasts

  • Eleanor Dallaway and Camille talk about Camille’s journey from Capitol Hill to Google as global head of product security strategy.
  • IntoSecurity Chats Episode 1 - Katie Moussouris
  • Into Security Podcast - Episode 1

More news and features

NCSC Set to Retire Web Check and Mail Check Tools

News

“I Paid Twice” Phishing Campaign Targets Booking.com

News

Hacktivist-Driven DDoS Dominates Attacks on Public Sector

News

ENISA report reveals DDoS accounted for 60% of public sector security incidents last year

UNK_SmudgedSerpent Targets Academics With Political Lures

News

CISA and NSA Outline Best Practices to Secure Exchange Servers

News

Critical Flaws Found in Elementor King Addons Affect 10,000 Sites

News

Chrome to Make HTTPS Mandatory by Default in 2026

News

Google Chrome will enhance security with enforced HTTPS connections from version 154, set for release in October 2026

PHP Servers and IoT Devices Face Growing Cyber-Attack Risks

News

Open Source “b3” Benchmark to Boost LLM Security for Agents

News

The backbone breaker benchmark (b3) has been launched to enhance the security of LLMs within AI agents

Investment Scams Spread Across Asia With International Reach

News

Blogs

Elevating SaaS Security with NIST CSF and Agentic AI

Blog

Preparing for the Quantum Future: Lessons from Singapore

Blog

Next-Gen Infosec

How to Prevent Data Leakages

Next-Gen

Top Cloud Misconceptions that Could Damage Your Organization

Next-Gen

Improve Asset Visibility in OT Security With Hybrid AI-Cloud Approaches

Next-Gen