Infosecurity Magazine

Web Application Security News

Scroll down for all the latest web application security news and information.

Latest News and Features

Malicious npm Dependency Linked to AI Assisted Commit Targets Crypto Wallets

News

Medtronic Confirms Data Breach After ShinyHunters Claims

News

Medtronic confirms IT breach as ShinyHunters claims millions of records accesseda

Widely Used Browser Extensions Selling User Data

News

Surge in Silent Subject Phishing Attacks Targets VIP Users

News

Null subject phishing campaigns bypass filters and target VIPs with QR code and RMM abuse

Commercial AI Models Show Rapid Gains in Vulnerability Research

News

Critical Nginx-ui MCP Flaw Actively Exploited in the Wild

News

AI Companies to Play Bigger Role in CVE Program, Says CISA

News

Malicious Chrome Extensions Campaign Exposes User Data

News

108 malicious Chrome extensions steal sessions, Google data, inject ads via single C2 infrastructure

Mailbox Rule Abuse Emerges as Stealthy Post-Compromise Threat

News

Bitcoin Depot Reports $3.6m Crypto Theft After System Breach

News

White Papers

Gcore Radar: DDoS Attack Trends Q3 to Q4, 2023

White Paper

5 Ways to Strengthen Your Active Directory Password Policy

White Paper

Pipedream Chernovite's emerging malware targeting Industrial Control Systems

White Paper

On-Demand Webinars

  • How To Enhance Security Operations with AI-Powered Defenses
  • Securing M365 Data and Identity Systems Against Modern Adversaries
  • Modernise Application Delivery for the New Era
  • Closing the Browser Security Gap: Defending Against Modern Web-Based Threats
  • How to Proactively Remediate Rising Web Application Threats
  • Experiencing a DDoS Simulation to Enhance Defenses
  • How to Pair Threat Hunting and Exploit Intelligence for Better Cybersecurity

Podcasts

  • Eleanor Dallaway and Camille talk about Camille’s journey from Capitol Hill to Google as global head of product security strategy.
  • IntoSecurity Chats Episode 1 - Katie Moussouris
  • Into Security Podcast - Episode 1

More news and features

Critical Vulnerability in Ninja Forms Exposes WordPress Sites

News

GrafanaGhost Exploit Bypasses AI Guardrails for Silent Data Exfiltration

News

Maryland Man Charged Over $53m Uranium Finance Crypto Hack

News

Maryland man accused of $53m Uranium Finance hack, exploited smart contract flaws, laundered funds

Cybercriminals Exploit Tax Season With New Phishing Tactics

News

Security Researchers Sound the Alarm on Vulnerabilities in AI-Generated Code

News

Attackers Rapidly Weaponize Critical Oracle WebLogic RCE, Honeypot Study Finds

News

Silver Fox Cyber Campaigns Show Shift Toward Dual Espionage

News

Silver Fox pivots from ValleyRAT tax lures to WhatsApp‑style stealers, blending espionage & phishing

Citrix Urges Immediate Patching for Critical NetScaler Vulnerabilities

News

New Npm 'Ghost Campaign' Uses Fake Install Logs to Hide Malware

News

Ghost npm campaign fakes install logs to steal sudo passwords and drop RATs that loot crypto and data

Trivy Supply Chain Attack Expands With New Compromised Docker Images

News

Blogs

Are Rainbow Tables Still Relevant in 2026?

Blog

Microsoft 365 Tenant Security: How to Stay in Control of Your Data

Blog

Next-Gen Infosec

How to Prevent Data Leakages

Next-Gen

Top Cloud Misconceptions that Could Damage Your Organization

Next-Gen

Improve Asset Visibility in OT Security With Hybrid AI-Cloud Approaches

Next-Gen