Server related  

APIs are generally more unsecure than main servers

CloudFlare explains how it deals with Tor traffic

Infected websites are hard to detect, only show up for users coming off search engines and for search bots

Most bot traffic originates from the US and AWS' network

Supporting HSTS is easier than you'd think

Let's Encrypt project is officially a success!

Server errors lose data about 147 root cert CA audits

Most hackers think servers are protected by the password "x"

Some Tor servers may leak timezone info via gzipped files

Outages caused by IT equipment failures are the most expensive incidents to fix, at $995 per interruption

Rogue routers can launch DoS attacks on your phone's battery

Company fixes issue with Ubuntu 15.10 server images

It's not that bad, but it's not something you could ignore

Attackers can bypass authentication and access patient data

Attackers can unmask users hidden under a VPN connection

Attackers could have had full control over DT's Web server

Major bug goes unnoticed in one of Java's most popular libraries, despite getting a CVSS vulnerability score of 10