The Hacker News

Malicious NGINX Configurations Enable Large-Scale Web Traffic Hijacking Campaign

Active React2Shell exploitation uses malicious NGINX configurations to hijack web traffic, targeting Baota panels, Asian TLDs ...

Hackers compromise NGINX servers to redirect user traffic

A threat actor is compromising NGINX servers in a campaign that hijacks user traffic and reroutes it through the attacker's ...
CSO Online

Threat actors hijack web traffic after exploiting React2Shell vulnerability: Report

Hijacking web traffic is an old tactic for threat actors. In fact David Shipley, head of Canadian security awareness training ...
Network World

Four new vulnerabilities found in Ingress NGINX

In addition to CVE-2026-24512, the other new vulnerabilities are CVE-2026-24513, considered by Meghu a low risk since an attacker needs to have a config containing specific errors to exploit, and ...
Computerworld

How to configure Nginx for WordPress Multisite with subdirectories

I’ve been running WordPress on Nginx for a couple of years now with great success in our data center. We host roughly 100 installs on modestly provisioned VMs, some that handle 1 million+ page views ...
SDxCentral

Kubernetes gatekeeper platform at risk from new flaws

Vulnerabilities have been discovered in the Kubernetes gatekeeper platform Ingress-Nginx ahead of its planned obsolescence.
InfoQ

Nginx Plus R8 Brings Hardened HTTP/2 and Persistent Re-configuration API

Automated testing is often blocked due to some well-known issues, especially in a microservices architecture. API and service simulators can eliminate five common issues that block test automation.