Penetration Testing News

Scroll down for the latest penetration testing news and information.

Browse other Physical and Information Security Convergence topics

Don’t miss out!

Subscribe to our weekly newsletter for the latest in industry news, expert insights, dedicated information security content and online events.

Lazarus Group Exploits Google Chrome Flaw in New Campaign

News24 Oct 2024

Severe Flaws Discovered in Major E2EE Cloud Storage Services

News21 Oct 2024

Post-Compromise Security: What to do When the Hackers Get in

News Feature20 Aug 2024

Attackers are engaging in extensive post-compromise activity and organizations need to place a greater focus on this aspect of their cybersecurity

Research Uncovers New Microsoft Outlook Vulnerability

News14 Aug 2024

CVE-2024-38173 is a medium severity RCE flaw in Microsoft Outlook, similar to CVE-2024-30103

Microsoft 365 Phishing Alert Can Be Hidden with CSS

News7 Aug 2024

Microsoft Outlook Faced Critical Zero-Click RCE Vulnerability

News10 Jul 2024

CISOs Reveal Firms Prioritize Savings Over Long-Term Security

News27 Jun 2024

Chinese State-Sponsored Operation “Crimson Palace” Revealed

News5 Jun 2024

Sophos said the campaign aimed to maintain prolonged network access for espionage purposes

XSS Vulnerabilities Found in WordPress Plugin Slider Revolution

News28 May 2024

Critical Vulnerabilities in Cinterion Modems Exposed

News13 May 2024

Don’t miss out!

Subscribe to our weekly newsletter for the latest in industry news, expert insights, dedicated information security content and online events.

White papers

State of Cybersecurity Report 2022

White Paper26 May 2022

Red Teaming: How to Identify Gaps in Your Security Strategy by Thinking Like the Enemy

White Paper9 Jan 2019

Pen Test Metrics 2018

White Paper27 Jul 2018

On-demand webinars

The Infosecurity Magazine End of Year Xmas Quiz (Feat. The Beer Farmers)
15 Dec 2022 Webinar
Reducing Industrial Cyber Risk Amid Digital Transformation
22 Sep 2022 Webinar
Life of: A Penetration Tester
4 Apr 2017 Webinar

What’s hot on Infosecurity Magazine?

TA455’s Iranian Dream Job Campaign Targets Aerospace with Malware

News12 Nov 2024

How to Backup and Restore Database in SQL Server

Blog27 Mar 2023

EU Ramps Up Cyber Resilience with Major Crisis Simulation Exercise

News11 Nov 2024

Chinese Air Fryers May Be Spying on Consumers, Which? Warns

News5 Nov 2024

WEF Introduces Framework to Strengthen Anti-Cybercrime Partnerships

News11 Nov 2024

Interlock Ransomware Targets US Healthcare, IT and Government Sectors

News7 Nov 2024

Chinese Air Fryers May Be Spying on Consumers, Which? Warns

News5 Nov 2024

Microsoft Visio Files Used in Sophisticated Phishing Attacks

News11 Nov 2024

New Remcos RAT Variant Targets Windows Users Via Phishing

News11 Nov 2024

NCSC Publishes Tips to Tackle Malvertising Threat

News7 Nov 2024

UK Regulator Urges Stronger Data Protection in AI Recruitment Tools

News7 Nov 2024

Defenders Outpace Attackers in AI Adoption

News7 Nov 2024

The Future of Fraud: Defending Against Advanced Account Attacks

Webinar18 Jul 2024

How to Manage Your Risks and Protect Your Financial Data

Webinar30 Oct 2024

New Cyber Regulations: What it Means for UK and EU Businesses

Webinar10 Oct 2024

Identifying Concentration Risk and Securing the Supply Chain

Webinar7 Nov 2024

Learn Key Strategies for Industrial Data Security

Webinar27 Jun 2024

How to Proactively Remediate Rising Web Application Threats

Webinar30 May 2024

Defenders Outpace Attackers in AI Adoption

News7 Nov 2024

ISACA CEO Erik Prusch on AI Fundamentals, Workforce, and Tackling Cybersecurity Challenges

Interview30 Oct 2024

31 New Ransomware Groups Join the Ecosystem in 12 Months

News8 Oct 2024

How Belgium's Leonidas Project Boosts National Cyber Resilience

News Feature28 Oct 2024

Protecting the Healthcare Supply Chain Against Russian Ransomware Attacks

Opinion1 Nov 2024

Snowflake Hacking Suspect Arrested in Canada

News6 Nov 2024

Podcasts

Javvad Malik tells us about his journey from end-user to analyst to vendor & Burnout &mental health in the cybersecurity industry and more.
17 Jun 2022 Podcast

Mallox Ransomware Deployed Via MS-SQL Honeypot Attack

News13 May 2024

Judge0 Sandbox Vulnerabilities Expose Systems to Takeover Risk

News29 Apr 2024

Dependency Confusion Vulnerability Found in Apache Project

News22 Apr 2024

This occurs when a private package fetches a similar public one, leading to exploit due to misconfigurations in package managers

Quishing Attacks Jump Tenfold, Attachment Payloads Halve

News18 Apr 2024

Report Suggests 93% of Breaches Lead to Downtime and Data Loss

News16 Apr 2024

LG TV Vulnerabilities Expose 91,000 Devices

News10 Apr 2024

Over 50,000 Vulnerabilities Discovered in DoD Systems Through Bug Bounty Program

News18 Mar 2024

Three New Critical Vulnerabilities Uncovered in Argo

News18 Mar 2024

The flaws, identified by KTrust, enable attackers to bypass rate limits and brute force protection mechanisms

Google Paid $10m in Bug Bounties to Security Researchers in 2023

News14 Mar 2024

Google revealed it paid $10m in bug bounty payments to more than 600 researchers in 2023, with the highest single payment being £113,337

Study Reveals Top Vulnerabilities in Corporate Web Applications

News12 Mar 2024

Events coming up

Infosecurity Europe 2025

Event3 – 5 Jun 2025

Infosecurity Magazine

Penetration Testing News

Browse other Physical and Information Security Convergence topics

Don’t miss out!

Latest news and features

Don’t miss out!

White papers

On-demand webinars

What’s hot on Infosecurity Magazine?

Podcasts

More news and features

Events coming up

Next-gen infosec