The Hacker News

Malicious NGINX Configurations Enable Large-Scale Web Traffic Hijacking Campaign

Active React2Shell exploitation uses malicious NGINX configurations to hijack web traffic, targeting Baota panels, Asian TLDs ...

Hackers compromise NGINX servers to redirect user traffic

A threat actor is compromising NGINX servers in a campaign that hijacks user traffic and reroutes it through the attacker's ...
Cybernews

Severe vulnerability affects NGINX: websites visitors in danger

A high-severity vulnerability affects NGINX, enabling attackers-in-the-middle to inject server responses and potentially take ...
Network World

Four new vulnerabilities found in Ingress NGINX

In addition to CVE-2026-24512, the other new vulnerabilities are CVE-2026-24513, considered by Meghu a low risk since an attacker needs to have a config containing specific errors to exploit, and ...
Computerworld

How to configure Nginx for WordPress Multisite with subdirectories

I’ve been running WordPress on Nginx for a couple of years now with great success in our data center. We host roughly 100 installs on modestly provisioned VMs, some that handle 1 million+ page views ...
SDxCentral

Kubernetes gatekeeper platform at risk from new flaws

Vulnerabilities have been discovered in the Kubernetes gatekeeper platform Ingress-Nginx ahead of its planned obsolescence.
InfoQ

Nginx Announces nginScript, a JavaScript-based Configuration Language

A monthly overview of things you need to know as an architect or aspiring architect. Unlock the full InfoQ experience by logging in! Stay updated with your favorite authors and topics, engage with ...
InfoQ

Nginx Plus R8 Brings Hardened HTTP/2 and Persistent Re-configuration API

Automated testing is often blocked due to some well-known issues, especially in a microservices architecture. API and service simulators can eliminate five common issues that block test automation.