The Hacker News

Magento PolyShell Flaw Enables Unauthenticated Uploads, RCE and Account Takeover

Magento flaw allows unauthenticated file uploads up to 2.4.9-alpha2, enabling RCE or takeover, exposing stores to attack risk ...
Dark Reading

Interlock Ransomware Targets Cisco Enterprise Firewalls

The ransomware gang, known for double-extortion attacks, had access to a critical Cisco firewall vulnerability weeks before ...
Infosecurity Magazine

AWS Warns Hackers Have Abused Cisco Firewall Zero-Day Since January

A prolific ransomware group has been exploiting a zero-day vulnerability in a Cisco firewall product since January, according ...
SecurityWeek

Cisco Firewall Vulnerability Exploited as Zero-Day in Interlock Ransomware Attacks

A vulnerability patched earlier this month by Cisco in its firewalls has been exploited as a zero-day since at least late January.
PC Magazine

World Wide Web

(1) (WorldWideWeb) The first Web browser, written by Tim Berners Lee and introduced in early 1991. It ran on the NeXT platform, which was also used as the first Web server. See NeXT. (2) (World Wide ...
Microsoft

Improve Power Pages security by activating Web Application Firewall independently

We are introducing two important enhancements to Web Application Firewall (WAF) in Microsoft Power Pages that make it easier to protect your sites and ensure production environments start secure by ...
Ars Technica

OpenAI picks up pace against Claude Code with new Codex desktop app

Today, OpenAI launched a macOS desktop app for Codex, its large language model-based coding tool that was previously used through a command line interface (CLI) on the web or inside an integrated ...
MarketWatch

NeuralTrust introduces the Generative Application Firewall (GAF)

NEW YORK, Jan. 26, 2026 /PRNewswire/ -- NeuralTrust is introducing the Generative Application Firewall (GAF) through the publication of a new foundational paper, developed in collaboration with and ...
IEEE

Anomaly Detection in Web Applications: A One-Class SVM Based Firewall for HTTP Request Monitoring

Abstract: Web application vulnerabilities pose significant risks, as malicious attackers can exploit these weaknesses through the Internet. This paper presents an anomaly detection-based web ...
IEEE

Using the Reinforcement Learning agent to test the correctness of rule configuration in Web Application Firewalls

Abstract: Data protection is one of the most essential elements of cyber security strategies and processes. One of the components that support this process are firewalls, particularly web application ...
healthcareinfosecurity.com

Web Application Firewalls (WAF)

Content delivery network giant Cloudflare is investigating a brief outage early Friday that took down multiple websites. The incident marks the second outage in the span of a month, although the ...
Bleeping Computer

CISA gives govt agencies 7 days to patch new Fortinet flaw

CISA has ordered U.S. government agencies to secure their systems within a week against another vulnerability in Fortinet's FortiWeb web application firewall, which was exploited in zero-day attacks.