Websec / Blog
Securing Today. Tomorrow could be too late.

Join us as we explore the ever-evolving world of cyber threats and arm yourself with knowledge to defend against potential breaches.

Get Consultation

Discover whats new

Posted 16 Apr

CVE-2026-33032: Unauthenticated nginx-ui MCP takeover

English, Dutchnginx-ui <= 2.3.5 exposes an unauthenticated MCP endpoint that can invoke privileged tools and take over Nginx service management.

cve-2026-33032auth-bypassinitial-access

Posted 02 Apr

CVE-2026-29014, MetInfo CMS unauthenticated PHP code injection

English, DutchMetInfo CMS 7.9.0 through 8.1.0 is affected by an unauthenticated PHP code injection flaw that can lead to remote code execution via the WeChat module.

cve-2026-29014rceinitial-access

Posted 15 Mar

Ophion: Building a Stealth Intel VT-x Hypervisor for Windows

English, DutchOphion is a stealth Intel VT-x hypervisor that virtualizes Windows while passing AC, AV, and VM-detection checks. This article covers how it works and how it evades detection.

Security EvasionHypervisorExploitation

Top 10 Best Security Tools for Pentesting

EnglishThis article covers the top 10 best security tools for pentesting. Learn the key features of each tool and where to hire the best pentesting experts.

Posted 02 September, 22

5 Major Types of Phishing Attacks

EnglishThis article covers the five major types of phishing attacks. Read to learn how phishing attacks work and how to prevent various types of phishing.

Posted 07 August, 22

What is Phishing? How it Works and How to Prevent Attacks

EnglishThis article covers everything you need to know about phishing. Read to learn what it is, how it works, its features, and how to prevent phishing attacks.

Posted 04 June, 22

What is Code Review and Why is it Important?

EnglishCode review is a quality assurance process aimed at ensuring high-quality code via well-planned assessments to spot and get rid of bugs. Read to know why it is important.

Posted 13 April, 22

Red Teaming: What it is, Why it Matters and Everything You Need to Know

EnglishRed Teaming is a multi-layered simulated attack used to test the security framework of an organization. Read to know how it works and why your company needs it.

Posted 04 March, 22

What is Employee Awareness Training and Why is it Important?

EnglishEmployee awareness training is designed to educate workers about cybersecurity and how to prevent cyberattacks. Read on to understand why it is important.

Posted 04 February, 22

What is Penetration Testing and Why is it Important?

EnglishPenetration testing helps companies to prevent & prepare for cyberattacks. Learn what pentesting is, its benefits, and where to get the best pentesting services.

Posted 25 January, 22

How to Enforce Cybersecurity Best Practices in the Remote Work Model

EnglishLearn remote work cybersecurity best practices. This article covers everything you need to know about implementing an effective remote work security framework.

Posted 17 January, 22

Need Security?

Are you really sure your organization is secure?

At WebSec we help you answer this question by performing advanced security assessments.

Want to know more? Schedule a call with one of our experts.

Schedule a call

Websec / Blog Securing Today. Tomorrow could be too late.