The Hacker News

Malicious NGINX Configurations Enable Large-Scale Web Traffic Hijacking Campaign

Active React2Shell exploitation uses malicious NGINX configurations to hijack web traffic, targeting Baota panels, Asian TLDs, and government domains.
Cybernews

Severe vulnerability affects NGINX: websites visitors in danger

A high-severity vulnerability affects NGINX, enabling attackers-in-the-middle to inject server responses and potentially take ...

Hackers compromise NGINX servers to redirect user traffic

A threat actor is compromising NGINX servers in a campaign that hijacks user traffic and reroutes it through the attacker's ...
CSO Online

Threat actors hijack web traffic after exploiting React2Shell vulnerability: Report

Hijacking web traffic is an old tactic for threat actors. In fact David Shipley, head of Canadian security awareness training ...
Network World

Four new vulnerabilities found in Ingress NGINX

In addition to CVE-2026-24512, the other new vulnerabilities are CVE-2026-24513, considered by Meghu a low risk since an attacker needs to have a config containing specific errors to exploit, and ...
SDxCentral

Kubernetes gatekeeper platform at risk from new flaws

Vulnerabilities have been discovered in the Kubernetes gatekeeper platform Ingress-Nginx ahead of its planned obsolescence.
Computerworld

How to configure Nginx for WordPress Multisite with subdirectories

I’ve been running WordPress on Nginx for a couple of years now with great success in our data center. We host roughly 100 installs on modestly provisioned VMs, some that handle 1 million+ page views ...