Naked Security on ReDoS Attacks

Naked Security have a fascinating look at a new (to me) type of attack, known as Regular Expression Denial of Service – or ReDoS, for short – which exploits HTTP Header handling to overwhelm certain web server software.