NGINX servers hijacked in global campaign to redirect traffic

Redirected traffic can be abused in multiple ways, experts warn ...
The Hacker News

Malicious NGINX Configurations Enable Large-Scale Web Traffic Hijacking Campaign

Active React2Shell exploitation uses malicious NGINX configurations to hijack web traffic, targeting Baota panels, Asian TLDs ...
Network World

Four new vulnerabilities found in Ingress NGINX

Four security vulnerabilities have been found in the open source Ingress NGINX traffic controller that is extensively used by organizations in Kubernetes deployments. They can only be fixed by ...

Hackers compromise NGINX servers to redirect user traffic

A threat actor is compromising NGINX servers in a campaign that hijacks user traffic and reroutes it through the attacker's ...
SDxCentral

Kubernetes gatekeeper platform at risk from new flaws

The decision was ultimately made by the Kubernetes SRC to retire the tool in light of a cluster of remote code execution (RCE) vulnerabilities discovered last year, as evolving expectations for ...
IEEE

Assessing the NGINX Server’s Configuration Security Based on CIS Benchmarks

Abstract: Websites and applications commonly rely on web server software such as NGINX to handle server-side tasks. Administrators often copy configuration files of these servers from online sources ...
GitHub

nginx fails to start after user runs configuration check in unconfined SELinux context

openSUSE Tumbleweed - Linux tumbleweed 6.15.8-1-default #1 SMP PREEMPT_DYNAMIC Thu Jul 24 07:19:58 UTC 2025 (e03d052) x86_64 x86_64 x86_64 GNU/Linux nginx version: nginx/1.29.0 built by gcc 15.1.1 ...
The Register on MSN

Public-facing Kubernetes clusters at risk of takeover thanks to Ingress-Nginx flaw

How many K8s systems are sat on the internet front porch like that ... Oh, thousands, apparently Cloudy infosec outfit Wiz has discovered serious vulnerabilities in the admission controller component ...
GitHub

Overleaf + nginx on a seperate path from root

Config of overleaf.rc (pretty standard stuff): #### Overleaf RC #### PROJECT_NAME=overleaf # Sharelatex container # Uncomment the OVERLEAF_IMAGE_NAME variable to use ...
IEEE

Analysis of HTTP DDoS Flood Attacks on Apache2 and Nginx Web Servers with Linux Ubuntu

Abstract: With the development of the Internet, HTTP Flood attacks, a method of cyber-attack that floods web servers with ostensibly authentic network Requests and causes them to lose their ability to ...