Web Security RSS Feeds

Directory0 web security feeds · 42 articlesShow all languages →

Latest

Web Security articles

Detectify: Automated Web Security Scanner for Vulnerability Detection

Detectify is a web security scanner that performs fully automated tests to identify security vulnerabilities on websites. It checks for over 1000 vulnerabilities including the OWASP Top 10, and can be used on both staging and production environments. The tool helps organizations

technologycybersecuritybusiness

opsmtrs.com·Tech by Flipboard·4d ago·3 min read

Understanding WebAuthn credential protection policy and discoverable credentials

Insighttechnologyprogrammingweb security

pilcrowonpaper.com7d ago

User Frustration with Cloudflare's Security Interstitials and Brand Perception

Opiniontechnologybusinessuser experience

news.ycombinator.com1mo ago

Let's Encrypt's Challenge: Creating Intentionally Broken Certificates for Testing

Insighttechnologyprogrammingweb security

letsencrypt.org1mo ago

Website Uses Anubis Proof-of-Work System to Protect Against AI Scraping

Newstechnologyprogrammingweb security

wesnoth.org1mo ago

Server Security Block: HTTP 400 Error Message

The article content is not actual article content but rather an HTTP 400 error message indicating that a request has been blocked by server security policies. The message advises contacting support if the user believes this is an error.

Newstechnologyweb securityerror messages

phys.org2mo ago

Firefox 148 Introduces Standardized Sanitizer API for Enhanced XSS Protection

Newstechnologyprogrammingweb security

hacks.mozilla.org3mo ago

Site Blocks Outdated Browsers to Combat LLM Training Crawlers

The article explains that users are seeing an error message because they're using outdated browsers that the site owner's anti-crawler system flags as suspicious. The site owner is blocking old browser versions (particularly Chrome) to combat a surge of high-volume crawlers in early 2025 that use outdated user agents, likely for LLM training data collection. This is an experimental measure to reduce server load on the Wandering Thoughts blog and CSpace wiki.

Newstechnologyweb securityinternet infrastructureutcc.utoronto.ca·Hacker News: Front Page·3mo ago·3 min read

Website Implements Anubis Proof-of-Work System to Protect Against AI Scraping

The article explains that the website uses Anubis, a Proof-of-Work system similar to Hashcash, to protect against AI companies aggressively scraping websites. This protection is implemented because mass scraping can cause server downtime and make resources inaccessible. Anubis wo

Newstechnologyweb securityinternet infrastructurecode.idtech.space·Hacker News: Front Page·3mo ago·1 min read

Website Blocks Old Browsers to Combat LLM Training Crawlers

A website owner explains that visitors are seeing an error message because their browsers are being blocked by anti-crawler measures. The site is implementing these blocks due to a surge of high-volume crawlers in early 2025, many using old browser user agents (particularly Chrome versions) to scrape content, likely for LLM training. The message is an apology and explanation to legitimate users who encounter this block.

Newstechnologyprogrammingweb securityutcc.utoronto.ca·Hacker News: Front Page·3mo ago·3 min read

Website Implements Anubis Proof-of-Work System to Block AI Scraping

Newstechnologyprogrammingai ethics

git.kernel.org4mo ago

Website Implements Anubis Proof-of-Work System to Block AI Scraping

Newstechnologyprogrammingai ethics

hecate.pink4mo ago

Simplified CSRF Protection Without Tokens or Hidden Form Fields for Web Frameworks

technologyprogrammingsoftware development

blog.miguelgrinberg.com5mo ago

Technical Guide: Protecting Forgejo Instances from AI Web Crawlers with Nginx Configuration

The article provides a technical guide on implementing an nginx configuration to protect a Forgejo instance from AI web crawlers while maintaining accessibility for legitimate users. The solution uses a cookie-based system that blocks crawlers by default but allows access to users with a specific cookie or using git-related user agents. The configuration ret

technologyprogrammingweb security

her.esy.fun5mo ago

Website Implements Anubis Proof-of-Work System to Protect Against AI Scraping

Newstechnologyai ethicsweb security

git.kernel.org5mo ago

OpenAI Appears to Scrape Certificate Transparency Logs for New Websites to Crawl

Insighttechnologyprogrammingweb security

benjojo.co.uk5mo ago

Website Implements Anubis Proof-of-Work System to Protect Against AI Scraping

The article explains that the website is using Anubis, a Proof-of-Work system similar to Hashcash, to protect against AI companies aggressively scraping websites. This protection mechanism adds computational cost to large-scale scraping operations while being negligible for indiv

Newstechnologyweb securityinternet infrastructuregitlab.winehq.org·Hacker News: Front Page·5mo ago·1 min read

SVG Clickjacking: A New Technique for Advanced Interactive Attacks and Data Exfiltration

The article introduces a novel cybersecurity technique called "SVG clickjacking" that significantly enhances traditional clickjacking attacks. Unlike classic clickjacking which only works for simple button presses, this new method using SVG filters enables complex interactive attacks and multiple forms of data exfiltration. The technique represents a powerfu

Insighttechnologycybersecurityprogramming

lyra.horse5mo ago