Web server threats and application attacks

In this resource guide get news and tips on Web server attacks, threats, and countermeasures. Learn how to secure your Web servers to prevent malicious hacker access and avoid DNS vulnerabilities.

New & Notable

Download this free guide

Free Guide: Root Causes of the Cybersecurity Skills Shortage

Our editorial director sat down with David Shearer, CEO of (ISC)², for a Q&A where they discussed what is (and isn’t) contributing to the cybersecurity skills shortage in the United States and how to fix the problem.

Corporate E-mail Address:
You forgot to provide an Email Address.
This email address doesn’t appear to be valid.
This email address is already registered. Please login.
You have exceeded the maximum character limit.
Please provide a Corporate E-mail Address.
- I agree to TechTarget’s Terms of Use, Privacy Policy, and the transfer of my information to the United States for processing to provide me with relevant information as described in our Privacy Policy.
Please check the box if you want to proceed.
- I agree to my information being processed by TechTarget and its Partners to contact me via phone, email, or other means regarding information relevant to my professional interests. I may unsubscribe at any time.
Please check the box if you want to proceed.

Web server threats and application attacks News

April 19, 2019 19 Apr'19
DNS hijacking campaign targets national security organizations

A DNS hijacking campaign targeting national security organizations and critical infrastructure may be part of a new trend, according to the researchers behind recent attacks.
April 16, 2019 16 Apr'19
Microsoft disputes Outlook data breach report

Microsoft warned Outlook users who may have had data compromised in an attack using customer support login credentials to access account information over the course of months.
April 04, 2019 04 Apr'19
Pipdig WordPress plugin accused of DDoS attacks and backdoors

Pipdig, a blog theme and plugin company, was accused of using obfuscated code to gain backdoor access to customer blogs and launch low-scale DDoS attacks on rivals.
April 03, 2019 03 Apr'19
Proof-of-concept Magento exploit used in attacks

Experts are urging users to patch after a proof-of-concept Magento exploit was picked up by malicious actors and used in attempted attacks on e-commerce websites.

View All News

Web server threats and application attacks Get Started

Bring yourself up to speed with our introductory content

Web application firewall (WAF)

A Web application firewall (WAF) is a firewall that monitors, filters or blocks traffic to and from a Web application. WAFs are especially useful to companies that provide products or services over the Internet. Continue Reading
denial-of-service attack

A denial-of-service attack is a security event that occurs when an attacker prevents legitimate users from accessing specific computer systems, devices, services or other IT resources. Continue Reading
cross-site scripting (XSS)

Cross-site scripting (XSS) is a type of injection security attack in which an attacker injects data, such as a malicious script, into content from otherwise trusted websites. Continue Reading

View All Get Started

Evaluate Web server threats and application attacks Vendors & Products

Weigh the pros and cons of technologies, products and projects you are considering.

Assess secure web gateways to suit your network security needs

Secure web gateways play an important role in minimizing security risks associated with website vulnerabilities, user behaviors and endpoint weaknesses. Continue Reading
Symantec Web Security Service vs. Zscaler Internet Access

Learn how cloud-based secure web gateway products Symantec Web Security Service and Zscaler Internet Access compare when it comes to features, benefits, pricing and support. Continue Reading
6 questions to ask before evaluating secure web gateways

Learn which six questions can help an organization identify its web security and business needs and its readiness to implement a secure web gateway. Continue Reading

View All Evaluate

Manage Web server threats and application attacks

Learn to apply best practices and optimize your operations.

How did Browser Reaper cause browsers to crash?

A Mozilla vulnerability duplicated in the Browser Reaper set of DoS proofs of concept caused Chrome, Firefox and Safari to crash. Learn why and how this occurred. Continue Reading
Java deserialization attacks: What are they and how do they work?

The TP-Link EAP Controller for Linux was recently found to be vulnerable to attacks. Learn from Judith Myerson what this means for users and how it can be prevented. Continue Reading
How to configure browsers to avoid web cache poisoning

Web cache poisoning poses a serious threat to web browser security. Learn how hackers can exploit unkeyed inputs for malicious use with expert Michael Cobb. Continue Reading

View All Manage

Problem Solve Web server threats and application attacks Issues

We’ve gathered up expert advice and tips from professionals like you so that the answers you need are always available.

How was Kea DHCP v1.4.0 affected by a security advisory?

Kea, an open source DHCP server, was issued a medium security advisory for a flaw that causes memory leakage in version 1.4.0. Discover the workarounds with Judith Myerson. Continue Reading
Why communication is critical for web security management

Conveying the importance of web security to management can be difficult for many security professionals. Kevin Beaver explains how to best communicate with the enterprise. Continue Reading
How does a WDC vulnerability put hardcoded passwords at risk?

Several vulnerabilities were found in Western Digital's My Cloud, including one that affects the default hardcoded password. Learn how to avoid such risks with expert Nick Lewis. Continue Reading

View All Problem Solve