In July 2025, DigiCert’s UltraWAF processed more than 1.1 trillion web requests, a 19.9% increase over June, with over 588 million flagged as malicious. While invalid RFC, cookie-based threats, and command injection remained dominant, the month saw an unprecedented 3,785% surge in Buffer Overflow Cookie exploits, signaling a rapidly evolving attack surface. Threat actors also deployed obfuscated Log4Shell payloads, stacked SQL injection chains, Apache Struts OGNL exploits, and XSS vectors, underscoring the breadth of techniques aimed at both modern and legacy systems.
