NGINX Kubernetes IngressNightmare, Critical Next.js CVE, Chrome Zero Day - Ep.32

Update: 2025-04-07

Description

Dive into the latest episode of AppSecNow, where we break down the Ingress Nightmare vulnerability impacting NGINX and Kubernetes environments, plus the implications of a critical CVE in Next.js, one of the most widely-used JavaScript frameworks with 9 million weekly downloads.

Join Aubrey, Chase, and Merlyn for expert analysis on the security landscape, from Chromium Zero Day concerns to ransomware gangs getting pwned. Stay informed on the front lines of application security with actionable advice from DevCentral's experts.

00:00 Introduction
01:45 IngressNightmare
08:39 Next.js Critical CVE
12:07 Chrome Zero Day
16:22 New Agents For Security Copilot
24:57 HaveIBeenPwned Mail List Leak
27:10 BlackLock RaaS Gang Pwned
30:28 Outro

Comments

In Channel

Tackling CVE Chaos, Parquet Tool Insights, and EU Cyber Resilience Act Unpacked

2025-04-2830:46

EV Car Hacking, AI-Generated Passports, & Japan’s Active Cyber Defense Bill

2025-04-2136:06

Amazon EC2 SSRF Breach, Oracle Cloud Breach & Malicious NPM Packages Exposed

2025-04-1435:08

NGINX Kubernetes IngressNightmare, Critical Next.js CVE, Chrome Zero Day - Ep.32

2025-04-0731:22

Vibe Coding, F5 Labs Bot Report, Google Buys Wiz And More | AppSec Now Ep 31

2025-03-3145:13

Latest AppSec Threats: Coinbase Phishing, BRUTED, OBSCURE#BAT, KoSpy And More!

2025-03-2436:47

Latest in AppSec: Apache Camel RCE, X DDoS, Silk Typhoon, and Encryption Debates

2025-03-1833:00

Exploring CISA Layoffs, Microsoft's Quantum Chip, MongoDB Vulnerabilities & More

2025-03-0327:33

Understanding The TikTok Ban, Salt Typhoon And More | AppSec Monthly January Ep.27

2025-01-3134:43

Cybersecurity Predictions 2025: Insights from F5 Labs | December Special AppSec Monthly Ep.26

2024-12-3001:08:31

Episode 25 - November 2024 - F5 Labs Black Friday Report, 2025 OWASP LLM Apps Top 10 And More

2024-11-3001:03:25

Episode 24 - October 2024 - F5 Labs APIWorld CTF, CUPS & Hyundai Vulnerabilities And More

2024-11-0532:21

Episode 23 - July 2024 - F5 Labs DDoS Report, CrowdStrike

2024-08-0601:11:20

Episode 22 - May 2024 - Security Authoring, Speaking At RSAC

2024-05-3152:08

Episode 21 - April 2024 - How AI Changes The Game For Red And Blue Teamers

2024-04-3057:15

Episode 20 - March 2024 - APISec University's 2024 API Security Market Review

2024-03-2901:00:51

Episode 19 - February 2024 - AI App Security For IoT Edge Devices

2024-03-0141:10

Episode 18 - Jan 2024 - From SBOM To WAF Policy

2024-01-3159:30

Bonus: This Week In Security Jan 15 - 21 2024 - Ancient VMWare Exploit, 37C3 Videos And More!

2024-01-2602:13

Bonus: This Week In Security Jan 7 - 14 2024 - Github Runner Poisoning, F-Bot, Hadoop Attacks

2024-01-2402:04

00:00

1.0x

NGINX Kubernetes IngressNightmare, Critical Next.js CVE, Chrome Zero Day - Ep.32

#box-pro-ellipsis-176631151621111{-webkit-line-clamp:2;}NGINX Kubernetes IngressNightmare, Critical Next.js CVE, Chrome Zero Day - Ep.32

NGINX Kubernetes IngressNightmare, Critical Next.js CVE, Chrome Zero Day - Ep.32

DevCentral

NGINX Kubernetes IngressNightmare, Critical Next.js CVE, Chrome Zero Day - Ep.32