Dark Reading

Stealth Bomber: Atlassian Confluence Exploits Drop Web Shells In-Memory

Fresh proof-of-concept (PoC) exploits are circulating in the wild for a widely targeted Atlassian Confluence Data Center and Confluence Server flaw. The new attack vectors could enable a malicious ...
Network World

All-out blitz against Web app attacks

Armed with Web application firewalls, intrusion-protection systems and vulnerability scanners, companies can defend against app-level cyberattacks. After nearly 20 years of selling software to the ...
Threat Post

Blue Mockingbird Monero-Mining Campaign Exploits Web Apps

The cybercriminals are using a deserialization vulnerability, CVE-2019-18935, to achieve remote code execution before moving laterally through the enterprise. A Monero cryptocurrency-mining campaign ...
Dark Reading

Metasploit To Get More Powerful Web Attack Features

A popular open-source Web application attack and audit framework is now under the umbrella of Rapid7, the vulnerability management company that purchased the Metasploit Project last year. The w3af ...
Infosecurity-magazine.com

Web Application Threats: Mapping Out Your Attack Surface

Navigating the murky world of modern web applications can be a minefield from a cybersecurity standpoint. Many of these critical applications contain a labyrinth of layers, and if not designed with ...
Bleeping Computer

The OWASP Top 10: What They Are and How to Test Them

Web applications often handle vast amounts of data, from personal user details to sensitive corporate information. As these applications grow in complexity and importance, they also become primary ...