Penetration Testing News

Scroll down for the latest penetration testing news and information.

Browse other Physical and Information Security Convergence topics

Don’t Miss Out!

Subscribe to our weekly newsletter for the latest in industry news, expert insights, dedicated information security content and online events.

Critical Vulnerability in Ninja Forms Exposes WordPress Sites

News8 April 2026

Ninja Forms File Upload RCE via unauthenticated arbitrary file upload; update to 3.3.27 immediately

GPU Rowhammer Attack Enables Privilege Escalation and Full System Compromise

News7 April 2026

GPUBreach uses GPU Rowhammer on GDDR6 to flip bits, corrupt page tables and escalate to system root

Attackers Rapidly Weaponize Critical Oracle WebLogic RCE, Honeypot Study Finds

News26 March 2026

New Ubuntu Flaw Enables Local Attackers to Gain Root Access

News18 March 2026

'CursorJack’ Attack Path Exposes Code Execution Risk in AI Development Environment

News17 March 2026

CrackArmor Flaws Expose Linux Systems to Privilege Escalation

News16 March 2026

Security Flaw in AWS Bedrock Code Interpreter Raises Alarms

News16 March 2026

Researchers Uncover ‘LeakyLooker’ Vulnerabilities in Google Looker Studio

News11 March 2026

AI Security Startups Dominate New Cyber Innovation Awards

News9 March 2026

Over one in five winners of IT-Harvest’s 2026 Cyber 150 are AI security companies

ContextCrush Flaw Exposes AI Development Tools to Attacks

News5 March 2026

Don’t miss out!

Subscribe to our weekly newsletter for the latest in industry news, expert insights, dedicated information security content and online events.

White Papers

State of Cybersecurity Report 2022

White Paper26 May 2022

Red Teaming: How to Identify Gaps in Your Security Strategy by Thinking Like the Enemy

White Paper9 January 2019

Pen Test Metrics 2018

White Paper27 July 2018

What’s Hot on Infosecurity Magazine?

Atomic Stealer MacOS ClickFix Attack Bypasses Apple Security Warnings

News9 April 2026

Just Three Ransomware Gangs Accounted for 40% of Attacks Last Month

News10 April 2026

Middle East Hack-for-Hire Operation Traced to South Asian Cyber Espionage Group

News9 April 2026

Google API Keys Quietly Gain Access to Gemini on Android Devices

News8 April 2026

The Death of the SIEM: Why Modern Security Demands a New Data Strategy

Blog31 March 2026

Tycoon2FA Phishing Service Resumes Activity Post-Takedown

News23 March 2026

Anthropic Launches Project Glasswing to Use AI to Find and Fix Critical Software Vulnerabilities

News8 April 2026

The Death of the SIEM: Why Modern Security Demands a New Data Strategy

Blog31 March 2026

How Security Leaders Can Safeguard Against Vibe Coding Security Risks

News Feature6 April 2026

Claude Discovers Apache ActiveMQ Bug Hidden for 13 Years

News8 April 2026

Russian APT28 Hackers Hijack Routers to Steal Credentials, UK Security Agency Warns

News7 April 2026

Atomic Stealer MacOS ClickFix Attack Bypasses Apple Security Warnings

News9 April 2026

Why Resilience‑Focused Cloud Design Is Your Best Defense Against Modern Attacks

Webinar18:00 — 19:00, 9 April 2026

How To Enhance Security Operations with AI-Powered Defenses

Webinar15:00 — 16:00, 26 February 2026

How to Maintain the Intelligence Edge in a Disrupted Threat Landscape

Webinar15:00 — 16:00, 12 March 2026

How to Recover From a Cyber-Attack: A Step-by-Step Playbook

Webinar11:00 — 11:30, 24 March 2026

Revisiting CIA: Developing Your Security Strategy in the SaaS Shared Reality

Webinar15:00 — 16:00, 11 December 2025

Securing M365 Data and Identity Systems Against Modern Adversaries

Webinar15:00 — 16:00, 22 January 2026

Exclusive Interview with OpenClaw's Security Advisor

Podcast13 March 2026

How Allianz Cyber Educator Daria Catalui Puts People First to Build a Human Firewall

Interview23 March 2026

AI Security and Governance Virtual Summit

Virtual Summit14:10 — 18:50, 28 April 2026

High-Tech Sector Overtakes Finance as Top Target for Cyber-Attacks, Mandiant Reports

News23 March 2026

Tycoon2FA Phishing Service Resumes Activity Post-Takedown

News23 March 2026

Podcasts

44% Surge in App Exploits as AI Speeds Up Cyber-Attacks, IBM Finds

News25 February 2026

Malicious NuGet Package Targets Stripe Developers

News25 February 2026

AI Assistants Used as Covert Command-and-Control Relays

News18 February 2026

VoidLink Malware Exhibits Multi-Cloud Capabilities and AI Code

News9 February 2026

VoidLink, a Linux-based C2 framework, facilitates credential theft, data exfiltration across clouds

SQL Injection Flaw Affects 40,000 WordPress Sites

News3 February 2026

DockerDash Exposes AI Supply Chain Weakness In Docker's Ask Gordon

News3 February 2026

DockerDash vulnerability allows RCE and data exfiltration via unverified metadata in Ask Gordon

Over 80% of Ethical Hackers Now Use AI

News27 January 2026

Bugcrowd study reveals 82% of security researchers now use AI, a big increase from 2023 figures

RealHomes CRM Plugin Flaw Affected 30,000 WordPress Sites

News22 January 2026

Motors WordPress Vulnerability Exposes Sites to Takeover

News17 December 2025

OpenAI Enhances Defensive Models to Mitigate Cyber-Threats

News11 December 2025

Blogs

Microsoft 365 Tenant Security: How to Stay in Control of Your Data

Blog9 April 2026

The Death of the SIEM: Why Modern Security Demands a New Data Strategy

Blog31 March 2026

Next-Gen Infosec

How to Prevent Data Leakages

Next-Gen11 August 2023

Top Cloud Misconceptions that Could Damage Your Organization

Next-Gen4 August 2023

Improve Asset Visibility in OT Security With Hybrid AI-Cloud Approaches

Next-Gen21 July 2023

Infosecurity Magazine

Penetration Testing News

Browse other Physical and Information Security Convergence topics

Don’t Miss Out!

Latest News and Features

Don’t miss out!

White Papers

What’s Hot on Infosecurity Magazine?

Podcasts

More news and features

Blogs

Next-Gen Infosec