Bleeping Computer

Web Cache Deception Attack Tricks Servers Into Caching Pages with Personal Data

Caching servers commonly deployed with big-name services will often cache the incorrect page content, including personal details, when the user accesses a non-existent resource, such as CSS or ...
Computerworld

CacheFlow revs up server-side Web cache

Ever-increasing Internet activity and the demand for quicker, richer Web content has put serious strain on corporate and e-commerce Web servers alike. CacheFlow’s new Server Accelerator 725, which off ...
Dark Reading

Free Tool Scans Web Servers for Vulnerability to HTTP Header-Smuggling Attacks

A researcher has created a method for testing and identifying how HTTP/HTTPS headers can be abused to sneak malicious code into back-end servers. Daniel Thatcher, researcher and penetration tester at ...
Dark Reading

New Hack Weaponizes the Web Cache

A newly discovered attack forces Web cache servers to deliver malicious content to website visitors – and also exposes a major security hole in Mozilla's Firefox browser infrastructure. James Kettle, ...
ZDNet

CPDoS attack can poison CDNs to deliver error pages instead of legitimate sites

Two academics from the Technical University of Cologne (TH Koln) have disclosed this week a new type of web attack that can poison content delivery networks (CDNs ...