Threat Post

Blue Mockingbird Monero-Mining Campaign Exploits Web Apps

The cybercriminals are using a deserialization vulnerability, CVE-2019-18935, to achieve remote code execution before moving laterally through the enterprise. A Monero cryptocurrency-mining campaign ...
Dark Reading

Stealth Bomber: Atlassian Confluence Exploits Drop Web Shells In-Memory

Fresh proof-of-concept (PoC) exploits are circulating in the wild for a widely targeted Atlassian Confluence Data Center and Confluence Server flaw. The new attack vectors could enable a malicious ...

RAVEN.IO Raises $20 Million to Prevent Cyberattacks as AI-Generated Exploits Make CVE-Based Security Obsolete

RAVEN.IO, a cybersecurity company that protects applications at runtime and prevents attacks in real time, today announced it has raised $20 million in funding. Norwest led the seed round, with a post ...
Business Insider

New Research Shows Surge in Mac Malware, Malicious Office Documents and Web Application Exploits in Q1 2019

Seattle, June 25, 2019 (GLOBE NEWSWIRE) -- WatchGuard® Technologies, a global leader in network security and intelligence, secure Wi-Fi and multi-factor authentication, today announced the release of ...
Dark Reading

Metasploit To Get More Powerful Web Attack Features

A popular open-source Web application attack and audit framework is now under the umbrella of Rapid7, the vulnerability management company that purchased the Metasploit Project last year. The w3af ...
Network World

All-out blitz against Web app attacks

Armed with Web application firewalls, intrusion-protection systems and vulnerability scanners, companies can defend against app-level cyberattacks. After nearly 20 years of selling software to the ...
Infosecurity-magazine.com

Web Application Threats: Mapping Out Your Attack Surface

Navigating the murky world of modern web applications can be a minefield from a cybersecurity standpoint. Many of these critical applications contain a labyrinth of layers, and if not designed with ...