Threat Post

Misconfigured Reverse Proxy Servers Spill Credentials

Researchers created a proof-of-concept attack that allows remote attackers to access protected APIs to extract credentials. Researchers have created a proof-of-concept attack that allows ...
Dark Reading

Apache Issues Patch To Stop Reverse-Proxy Bypass Attack

It all boils down to a missing forward-slash symbol: A newly discovered method of attack could let hackers access databases, firewalls, routers, and other internal network resources via misconfigured ...
Infosecurity-magazine.com

Context discovers reverse web proxy security loophole; advises on remediation

According to the London-based security consultancy, which has been working with the Apache Software Foundation to advise users of the open source platform, it has developed a number of remediation ...