Network World

Four new vulnerabilities found in Ingress NGINX

In addition to CVE-2026-24512, the other new vulnerabilities are CVE-2026-24513, considered by Meghu a low risk since an attacker needs to have a config containing specific errors to exploit, and ...
SDxCentral

Kubernetes gatekeeper platform at risk from new flaws

Vulnerabilities have been discovered in the Kubernetes gatekeeper platform Ingress-Nginx ahead of its planned obsolescence.
Security Boulevard

Enabling and Securing Basic Authentication: A Comprehensive Guide

Learn how to enable and secure basic authentication for enterprise systems. Guide covers tls encryption, credential hygiene, and sso migration for ctos.

Hackers compromise NGINX servers to redirect user traffic

A threat actor is compromising NGINX servers in a campaign that hijacks user traffic and reroutes it through the attacker's ...
The Hacker News

Malicious NGINX Configurations Enable Large-Scale Web Traffic Hijacking Campaign

Active React2Shell exploitation uses malicious NGINX configurations to hijack web traffic, targeting Baota panels, Asian TLDs ...

NGINX servers hijacked in global campaign to redirect traffic

Redirected traffic can be abused in multiple ways, experts warn ...
Security Boulevard

Single Sign-On with External Security Token Services

Learn how to implement Single Sign-On with External Security Token Services (STS). A deep dive into SAML, OIDC, and token exchange for CTOs and VP Engineering.