Web Application Security News

Scroll down for all the latest web application security news and information.

Browse other Application Security topics

Don’t miss out!

Subscribe to our weekly newsletter for the latest in industry news, expert insights, dedicated information security content and online events.

UserPro Plugin Vulnerability Allows Account Takeover

News22 May 2024

Russia’s DoppelGänger Campaign Manipulates Social Media

News21 May 2024

Cyber-Attack Disrupts Christie’s $840M Art Auctions

News15 May 2024

NIST Confusion Continues as Cyber Pros Complain CVE Uploads Stalled

News14 May 2024

Several software security experts have told Infosecurity that no new vulnerabilities have been added to the US National Vulnerability Database (NVD) since May 9

New 'LLMjacking' Attack Exploits Stolen Cloud Credentials

News9 May 2024

Sysdig said the attackers gained access to these credentials from a vulnerable version of Laravel

Security Breach Exposes Dropbox Sign Users

News2 May 2024

Attackers accessed emails, usernames, phone numbers, hashed passwords and authentication information

UnitedHealth CEO Confirms Breach Tied to Stolen Credentials, No MFA

News1 May 2024

Millions of Malicious Containers Found on Docker Hub

News30 Apr 2024

Study Reveals Alarming Levels of USPS Phishing Traffic

News29 Apr 2024

Fraudsters Exploit Telegram’s Popularity For Toncoin Scam

News22 Apr 2024

Don’t miss out!

Subscribe to our weekly newsletter for the latest in industry news, expert insights, dedicated information security content and online events.

Webinars coming up

How to Proactively Remediate Rising Web Application Threats

30 May 2024, 13:00 BST

White papers

Gcore Radar: DDoS Attack Trends Q3 to Q4, 2023

White Paper20 Mar 2024

5 Ways to Strengthen Your Active Directory Password Policy

White Paper30 Oct 2023

Pipedream Chernovite's emerging malware targeting Industrial Control Systems

White Paper19 Aug 2022

On-demand webinars

Why DDoS Simulation Testing is Critical for Proactive Network Defense
2 May 2024 Webinar
How to Pair Threat Hunting and Exploit Intelligence for Better Cybersecurity
21 Feb 2024 Webinar
Mastering Software Supply Chain Security with Strategic Defense Mechanisms
30 Nov 2023 Webinar
The Infosecurity Magazine End of Year Xmas Quiz (Feat. The Beer Farmers)
15 Dec 2022 Webinar
How a Threat Response Unit Unmasks a Hacker
1 Dec 2022 Webinar
Updating Your Active Directory Security to the Modern Threat Environment
27 Oct 2022 Webinar
How to Secure Your Applications Against API Attacks
8 Sep 2022 Webinar
Attack Surface Management: Discover and Secure Your Unknown Internet Exposure at Scale
30 Jun 2022 Webinar
Supply Chain Cybersecurity: How to Mitigate Third-Party Risks?
16 Jun 2022 Webinar
Securing Cyber-Attack Vulnerabilities From Your Supply Chain
9 Jun 2022 Webinar

What’s hot on Infosecurity Magazine?

70% of CISOs Expect Cyber-Attacks in Next Year, Report Finds

News21 May 2024

Russia’s DoppelGänger Campaign Manipulates Social Media

News21 May 2024

Ransomware and AI-Powered Hacks Drive Cyber Investment

News21 May 2024

Critical Fluent Bit Bug Impacts All Major Cloud Platforms

News21 May 2024

Over 60% of Network Security Appliance Flaws Exploited as Zero Days

News21 May 2024

Authorized Push Payment Fraud Cases Surge 12% Annually

News22 May 2024

RSAC: Decoding US Government Plans to Shift the Software Security Burden

News7 May 2024

NIST Confusion Continues as Cyber Pros Complain CVE Uploads Stalled

News14 May 2024

New Android Banking Trojan Mimics Google Play Update App

News17 May 2024

Report Suggests 93% of Breaches Lead to Downtime and Data Loss

News16 Apr 2024

Santander Customer Data Compromised Following Third-Party Breach

News15 May 2024

UK Councils Warn of Data Breach After Attack on Medical Supplier

News17 May 2024

How to Optimize Third-Party Risk Management Programs Through NIST CSF 2.0

Webinar16 May 2024

Learn from the NHS - Proactive Password Security for Improved Cybersecurity

Webinar16 May 2024

Why DDoS Simulation Testing is Critical for Proactive Network Defense

Webinar2 May 2024

Adapting to Tomorrow's Threat Landscape: AI's Role in Cybersecurity and Security Operations in 2024

Webinar28 Mar 2024

Is MFA Enough? Strategies for Next-Level Identity Security in 2024

Webinar11 Apr 2024

Understand and Combat the Top Healthcare Cloud Threats Today

Webinar21 Mar 2024

Women in Cybersecurity at Infosecurity Europe 2024

Magazine Event15:00 – 17:30 BST, 5 Jun 2024

RSAC: CISA Launches Vulnrichment Program to Address NVD Challenges

News8 May 2024

LockBit Leader aka LockBitSupp Identity Revealed

News7 May 2024

How to Proactively Remediate Rising Web Application Threats

Webinar30 May 2024, 13:00 BST

Learn from the NHS - Proactive Password Security for Improved Cybersecurity

Webinar16 May 2024

Live Roundtable Event: Secure Enterprise Browsing, New Ways to Strengthen Endpoint Security

Magazine Event10:00 – 11:30 BST, 4 Jun 2024

Podcasts

Eleanor Dallaway and Camille talk about Camille’s journey from Capitol Hill to Google as global head of product security strategy.
29 Apr 2022 Podcast
IntoSecurity Chats Episode 1 - Katie Moussouris
3 Mar 2021 Podcast
Into Security Podcast - Episode 1
15 May 2019 Podcast

New Cyber-Threat MadMxShell Exploits Typosquatting and Google Ads

News18 Apr 2024

Zscaler also confirmed MadMxShell uses DLL sideloading and DNS tunneling for C2 communication

LeakyCLI Flaw Exposes AWS and Google Cloud Credentials

News16 Apr 2024

Cybersecurity Pros Urge US Congress to Help NIST Restore NVD Operation

News16 Apr 2024

Data Breach Exposes 300k Taxi Passengers’ Information

News11 Apr 2024

Rhadamanthys Malware Deployed By TA547 Against German Targets

News10 Apr 2024

Windows: New 'BatBadBut' Rust Vulnerability Given Highest Severity Score

News10 Apr 2024

Hackers Use Malware to Hunt Software Vulnerabilities

News9 Apr 2024

Jackson County IT Systems Hit By Ransomware Attack

News4 Apr 2024

New JSOutProx Malware Targets Financial Firms in APAC, MENA

News4 Apr 2024

First found in 2019, JSOutProx combines JavaScript and .NET functionalities to infiltrate systems

Firms Must Work Harder to Guard Children’s Privacy, Says UK ICO

News4 Apr 2024

Privacy regulator the ICO urges social media and video sharing firms to do more to protect children’s data

Events coming up

Infosecurity Europe 2024

Event4 – 6 Jun 2024

Live Roundtable Event: Secure Enterprise Browsing, New Ways to Strengthen Endpoint Security

Magazine Event10:00 – 11:30 BST, 4 Jun 2024

Next-gen infosec

How to Prevent Data Leakages

Next-Gen11 Aug 2023

Top Cloud Misconceptions that Could Damage Your Organization

Next-Gen4 Aug 2023

Improve Asset Visibility in OT Security With Hybrid AI-Cloud Approaches

Next-Gen21 Jul 2023