The Hacker News Logo
Click to Subscribe

The Hacker News — Latest Cyber Security, Hacking & Tech News: Web Application Security

Warning: Researcher Drops phpMyAdmin Zero-Day Affecting All Versions

Warning: Researcher Drops phpMyAdmin Zero-Day Affecting All Versions

September 18, 2019Wang Wei
A cybersecurity researcher recently published details and proof-of-concept for an unpatched zero-day vulnerability in phpMyAdmin—one of t...
WebARX — A Defensive Core For Your Website

WebARX — A Defensive Core For Your Website

September 12, 2019The Hacker News
Estonian based web security startup WebARX, the company who is also behind open-source plugin vulnerability scanner WPBullet and soon-to-...
Imperva Breach Exposes WAF Customers' Data, Including SSL Certs, API Keys

Imperva Breach Exposes WAF Customers' Data, Including SSL Certs, API Keys

August 27, 2019Wang Wei
Imperva, one of the leading cybersecurity startups that helps businesses protect critical data and applications from cyberattacks, has su...
Let Experts Do Their Job – Managed WAF by Indusface

Let Experts Do Their Job – Managed WAF by Indusface

August 13, 2019The Hacker News
WAF (Web Application Firewall) has been the first line of defence when it comes to application security for a while now. Many organizatio...
AppTrana — Website Security Solution That Actually Works

AppTrana — Website Security Solution That Actually Works

July 02, 2019The Hacker News
Data loss and theft continues to rise, and hardly a day goes by without significant data breaches hit the headlines. In January 2019 al...
Critical Flaw Reported in Popular Evernote Extension for Chrome Users

Critical Flaw Reported in Popular Evernote Extension for Chrome Users

June 13, 2019Swati Khandelwal
Cybersecurity researchers discover a critical flaw in the popular Evernote Chrome extension that could have allowed hackers to hijack you...
F5 Networks Acquires NGINX For $670 Million

F5 Networks Acquires NGINX For $670 Million

March 12, 2019Wang Wei
One of the most important software companies NGINX , which is also behind the very popular open-source web server of the same name, is b...
Severe Flaw Disclosed In StackStorm DevOps Automation Software

Severe Flaw Disclosed In StackStorm DevOps Automation Software

March 11, 2019Mohit Kumar
A security researcher has discovered a severe vulnerability in the popular, open source event-driven platform StackStorm that could allo...
Tumblr Patches A Flaw That Could Have Exposed Users’ Account Info

Tumblr Patches A Flaw That Could Have Exposed Users’ Account Info

October 17, 2018Swati Khandelwal
Tumblr today published a report admitting the presence of a security vulnerability in its website that could have allowed hackers to st...
Latest Joomla 3.7.1 Release Patches Critical SQL Injection Attack

Latest Joomla 3.7.1 Release Patches Critical SQL Injection Attack

May 17, 2017Mohit Kumar
If your website is based on the popular Joomla content management system, make sure you have updated your platform to the latest version ...
New Apache Struts Zero-Day Vulnerability Being Exploited in the Wild

New Apache Struts Zero-Day Vulnerability Being Exploited in the Wild

March 09, 2017Swati Khandelwal
Security researchers have discovered a Zero-Day vulnerability in the popular Apache Struts web application framework, which is being acti...
Yahoo Hacked Once Again! Quietly Warns Affected Users About New Attack

Yahoo Hacked Once Again! Quietly Warns Affected Users About New Attack

February 16, 2017Mohit Kumar
Has Yahoo rebuilt your trust again? If yes, then you need to think once again, as the company is warning its users of another hack. L...
Update — Hacker Claims to Have Hacked the FBI, But It Wasn't

Update — Hacker Claims to Have Hacked the FBI, But It Wasn't

January 05, 2017Mohit Kumar
Update: A hacker yesterday claimed to have hacked the FBI's website running on Plone CMS, but it seems it wasn't hacked using an...
Someone Hijacking Unsecured MongoDB Databases for Ransom

Someone Hijacking Unsecured MongoDB Databases for Ransom

January 04, 2017Swati Khandelwal
Nearly two years back, we warned users about publicly accessible MongoDB instances – almost 600 Terabytes (TB) – over the Internet which...
3 Critical Zero-Day Flaws Found in PHP 7 — One Remains Unpatched!

3 Critical Zero-Day Flaws Found in PHP 7 — One Remains Unpatched!

December 29, 2016Swati Khandelwal
Three critical zero-day vulnerabilities have been discovered in PHP 7 that could allow an attacker to take complete control over 80 perce...
Multiple Critical Remotely Exploitable Flaws Discovered in Memcached Caching System

Multiple Critical Remotely Exploitable Flaws Discovered in Memcached Caching System

November 02, 2016Swati Khandelwal
Hey Webmasters, are you using Memcached to boost the performance of your website? Beware! It might be vulnerable to remote hackers. T...
Researcher finds a way to Delete and Modify Facebook Messages Sent to Other Users

Researcher finds a way to Delete and Modify Facebook Messages Sent to Other Users

June 07, 2016Swati Khandelwal
Sometimes I receive emails from our readers who wanted to know how to hack Facebook account , but just to delete some of their messages t...
Exclusive Deals

Stay Informed — Newsletter Sign Up

Sign up for THN newsletter and get our latest stories delivered straight to your inbox.