Cybernews

Severe vulnerability affects NGINX: websites visitors in danger

A high-severity vulnerability affects NGINX, enabling attackers-in-the-middle to inject server responses and potentially take ...
The Hacker News

Malicious NGINX Configurations Enable Large-Scale Web Traffic Hijacking Campaign

Active React2Shell exploitation uses malicious NGINX configurations to hijack web traffic, targeting Baota panels, Asian TLDs, and government domains.
Network World

Four new vulnerabilities found in Ingress NGINX

In addition to CVE-2026-24512, the other new vulnerabilities are CVE-2026-24513, considered by Meghu a low risk since an attacker needs to have a config containing specific errors to exploit, and ...
Ars Technica

nginx reverse proxy and NextCloud

Hi guys - not sure if this is entirely the correct sub-forum but here goes. I'm ripping my hair out over a NextCloud issue that I *think* is related to my nginx reverse proxy setup, but not at all ...

Hackers compromise NGINX servers to redirect user traffic

A threat actor is compromising NGINX servers in a campaign that hijacks user traffic and reroutes it through the attacker's ...
SDxCentral

Kubernetes gatekeeper platform at risk from new flaws

Vulnerabilities have been discovered in the Kubernetes gatekeeper platform Ingress-Nginx ahead of its planned obsolescence.
Semiconductor Engineering

Nginx Performance On AWS Graviton3

In this blog we explore the performance of a Nginx Reverse Proxy (RP) and API Gateway (APIGW) on AWS Graviton3-based instances. We will also refer to these collectively as RP/APIGW. We compared AWS ...
Threat Post

Misconfigured Reverse Proxy Servers Spill Credentials

Researchers created a proof-of-concept attack that allows remote attackers to access protected APIs to extract credentials. Researchers have created a proof-of-concept attack that allows ...