Infosecurity Magazine

Web Application Security News

Scroll down for all the latest web application security news and information.

Latest News and Features

Cybersecurity Software Fails to Detect Fifth of Brower-Based Phishing Attacks

News

Konvu CEO on Winning Infosecurity Europe’s First Startup Battle and Tackling Vulnerability Overload

Interview

75% of Firms Deploy Vulnerable Code Amid Pressure on CISOs, Report Finds

News

Critical phpBB Flaw Lets Attackers Hijack Any Account with One Request

News

Critical phpBB authentication bypass lets attackers hijack any account with one request

OpenAI Unveils ChatGPT Account Security Controls

News

OpenAI brings Lockdown Mode and Active Sessions to ChatGPT to curb prompt injection data theft

Infosecurity Europe: How DSIT Protects Thousands of UK Orgs from Cyber Vulnerabilities

News

Infosecurity Europe: Patch Responsibility Remains Up for Grabs as AI Unearths Decades of Flaws

News

The Beginning of the End of Human Penetration Testing

Opinion

Thousands of Fake FIFA Domains Target World Cup Fans

News

Avada Builder Flaws Expose One Million WordPress Sites

News

Avada Builder flaws allowed file read and SQL injection on one million WordPress sites

White Papers

Gcore Radar: DDoS Attack Trends Q3 to Q4, 2023

White Paper

5 Ways to Strengthen Your Active Directory Password Policy

White Paper

Pipedream Chernovite's emerging malware targeting Industrial Control Systems

White Paper

On-Demand Webinars

  • How To Enhance Security Operations with AI-Powered Defenses
  • Securing M365 Data and Identity Systems Against Modern Adversaries
  • Modernise Application Delivery for the New Era
  • Closing the Browser Security Gap: Defending Against Modern Web-Based Threats
  • How to Proactively Remediate Rising Web Application Threats
  • Experiencing a DDoS Simulation to Enhance Defenses
  • How to Pair Threat Hunting and Exploit Intelligence for Better Cybersecurity

Podcasts

  • Eleanor Dallaway and Camille talk about Camille’s journey from Capitol Hill to Google as global head of product security strategy.
  • IntoSecurity Chats Episode 1 - Katie Moussouris
  • Into Security Podcast - Episode 1

More news and features

OpenAI Launches 'Daybreak' to Help Build Secure By Design Software

News

Fake Claude Code Page Pushes PowerShell Stealer at Devs

News

PCPJack Campaign Boots TeamPCP Off Compromised Machines

News

Cline Kanban Flaw Lets Websites Hijack AI Coding Agents

News

Fake Claude AI Site Drops Beagle Backdoor on Windows Users

News

Sophos finds fake Claude site spreading DonutLoader and a new Beagle backdoor via DLL sideloading

Trellix Reveals Unauthorized Access to Source Code

News

Malicious npm Dependency Linked to AI Assisted Commit Targets Crypto Wallets

News

Medtronic Confirms Data Breach After ShinyHunters Claims

News

Widely Used Browser Extensions Selling User Data

News

Dozens of browser extensions openly sell user data via privacy policy disclosures

Surge in Silent Subject Phishing Attacks Targets VIP Users

News

Null subject phishing campaigns bypass filters and target VIPs with QR code and RMM abuse

Blogs

How Enterprises are Adapting GRC For a More Complex Risk Environment

Blog

Why Collaboration Friction is the Hidden Driver of Lost Control

Blog

Next-Gen Infosec

How to Prevent Data Leakages

Next-Gen

Top Cloud Misconceptions that Could Damage Your Organization

Next-Gen

Improve Asset Visibility in OT Security With Hybrid AI-Cloud Approaches

Next-Gen