Infosecurity Magazine

Web Application Security News

Scroll down for all the latest web application security news and information.

Latest News and Features

Trivy Supply Chain Attack Expands With New Compromised Docker Images

News

Crypto Scam "ShieldGuard" Dismantled After Malware Discovery

News

ShieldGuard Chrome extension posed as a crypto security tool but stole wallets and drained user data

Average Number of Daily API Attacks Up 113% Annually

News

Security Flaw in AWS Bedrock Code Interpreter Raises Alarms

News

Researchers Uncover ‘LeakyLooker’ Vulnerabilities in Google Looker Studio

News

LeakyLooker flaws in Google Looker Studio let attackers run cross-tenant SQL attacks on cloud data

Compromised WordPress Sites Deliver ClickFix Attacks in Global Infostealer Campaign

News

Cloud Attackers Now Prefer Vulnerability Exploits Over Credentials, Google Cloud Finds

News

Ericsson Breach Exposes Data of 15k Employees and Customers

News

Threat Actor Exploits Flaws and Uses Elastic Cloud SIEM to Manage Stolen Data

News

ContextCrush Flaw Exposes AI Development Tools to Attacks

News

Critical flaw "ContextCrush" in Context7 MCP Server could allow malicious instructions into AI tools

White Papers

Gcore Radar: DDoS Attack Trends Q3 to Q4, 2023

White Paper

5 Ways to Strengthen Your Active Directory Password Policy

White Paper

Pipedream Chernovite's emerging malware targeting Industrial Control Systems

White Paper

On-Demand Webinars

  • How To Enhance Security Operations with AI-Powered Defenses
  • Securing M365 Data and Identity Systems Against Modern Adversaries
  • Modernise Application Delivery for the New Era
  • Closing the Browser Security Gap: Defending Against Modern Web-Based Threats
  • How to Proactively Remediate Rising Web Application Threats
  • Experiencing a DDoS Simulation to Enhance Defenses
  • How to Pair Threat Hunting and Exploit Intelligence for Better Cybersecurity

Podcasts

  • Eleanor Dallaway and Camille talk about Camille’s journey from Capitol Hill to Google as global head of product security strategy.
  • IntoSecurity Chats Episode 1 - Katie Moussouris
  • Into Security Podcast - Episode 1

More news and features

Surge in Attacks on Surveillance Cameras Linked to Iranian Hackers

News

Leaked Database Sheds Light on Iranian Crypto Sanctions Evasion

News

Chrome Unveils Plan For Quantum-Safe HTTPS Certificates

News

Darktrace Flags 32 Million Phishing Emails in 2025 as Identity Attacks Intensify

News

AI Assistants Used as Covert Command-and-Control Relays

News

AIs like Grok and Microsoft Copilot can be exploited as covert C2 channels for malware communication

Google Warns of In the Wild Exploit as It Patches New Chrome Zero Day

News

Two Connecticut Men Charged In Alleged $3m Gambling Fraud Scheme

News

Two Connecticut men face federal charges for a $3m scheme targeting online gambling platforms

SolarWinds Web Help Desk Vulnerability Actively Exploited

News

SQL Injection Flaw Affects 40,000 WordPress Sites

News

DockerDash Exposes AI Supply Chain Weakness In Docker's Ask Gordon

News

DockerDash vulnerability allows RCE and data exfiltration via unverified metadata in Ask Gordon

Blogs

How to Cut MTTR by 21 Minutes Per Case: An Action Plan for CISOs

Blog

Identity Drift: The Hidden Risk in Hybrid Active Directory Environments

Blog

Next-Gen Infosec

How to Prevent Data Leakages

Next-Gen

Top Cloud Misconceptions that Could Damage Your Organization

Next-Gen

Improve Asset Visibility in OT Security With Hybrid AI-Cloud Approaches

Next-Gen