Penetration Testing News

Scroll down for the latest penetration testing news and information.

Browse other Physical and Information Security Convergence topics

Don’t Miss Out!

Subscribe to our weekly newsletter for the latest in industry news, expert insights, dedicated information security content and online events.

Critical Flowise Flaw Gives Attackers Full Server Control

News1 June 2026

Obsidian publishes PoC for a 1-click Flowise RCE that can fully compromise self-hosted servers

The Beginning of the End of Human Penetration Testing

Opinion29 May 2026

68% of UK Firms Plan to Increase Cyber Spending as AI Risks Rise

News27 May 2026

Nine-Year-Old Linux Kernel Flaw Leaks SSH Keys and Password Hashes

News21 May 2026

New Fragnesia Flaw Hands Linux Local Users Root Access

News14 May 2026

New Fragnesia kernel flaw lets unprivileged local users escalate to root on Linux systems

ICO Publishes Five-Step Plan to Counter Emerging AI-Powered Attacks

News14 May 2026

The Information Commissioner’s Office has released new guidance on how to mitigate the risk of AI-powered attacks

Avada Builder Flaws Expose One Million WordPress Sites

News13 May 2026

Cline Kanban Flaw Lets Websites Hijack AI Coding Agents

News7 May 2026

OpenAI and Anthropic LLMs Used in Critical Infrastructure Cyber-Attack, Warns Dragos

News7 May 2026

Nine-Year-Old Zero-Day Flaw in Linux Kernel Discovered by AI-Equipped Security Researcher

News1 May 2026

Don’t miss out!

Subscribe to our weekly newsletter for the latest in industry news, expert insights, dedicated information security content and online events.

White Papers

State of Cybersecurity Report 2022

White Paper26 May 2022

Red Teaming: How to Identify Gaps in Your Security Strategy by Thinking Like the Enemy

White Paper9 January 2019

Pen Test Metrics 2018

White Paper27 July 2018

What’s Hot on Infosecurity Magazine?

FBI Warns 'Kali365' Phishing Kit Hijacks Microsoft 365 OAuth Tokens

News25 May 2026

The Beginning of the End of Human Penetration Testing

Opinion29 May 2026

GCHQ Chief Urges Action as AI Reshapes Cyber Threats

News28 May 2026

BTMOB Android RAT Spreads Through No-Code Builder Tooling

News26 May 2026

Iran-Linked Hackers Target US Aviation with Phishing and SEO Poisoning Campaign

News26 May 2026

Fake Gemini and Claude Code Sites Spread Infostealers Through SEO Poisoning

News22 May 2026

Cyber House Party: More Than Just an After Party

Opinion27 May 2026

Cyber Resilience Under Pressure: Can Your Organisation Prove Control When it Matters Most?

Webinar11:00 — 12:00, 21 May 2026

FBI Warns 'Kali365' Phishing Kit Hijacks Microsoft 365 OAuth Tokens

News25 May 2026

Iran-Linked Hackers Target US Aviation with Phishing and SEO Poisoning Campaign

News26 May 2026

Microsoft Condemns "Uncoordinated" Zero Day Disclosures

News28 May 2026

Chinese Threat Actors Ditch Static Phishing Pages for Live Credential Interception

News26 May 2026

Cyber Resilience Under Pressure: Can Your Organisation Prove Control When it Matters Most?

Webinar11:00 — 12:00, 21 May 2026

Behind the Curtain of Microsoft 365 Cybersecurity: Lessons from Overlooked Resilience Gaps

Webinar15:00 — 16:00, 23 April 2026

Building True Cyber Resilience Across Financial Supply Chains

Webinar15:00 — 16:00, 30 April 2026

How To Enhance Security Operations with AI-Powered Defenses

Webinar15:00 — 16:00, 26 February 2026

How to Recover From a Cyber-Attack: A Step-by-Step Playbook

Webinar11:00 — 11:30, 24 March 2026

Cybersecurity Employment: Making Sense of Conflicting Messaging

Webinar17:00 — 18:00, 19 May 2025

Anthropic Rolls Out Claude Security for AI Vulnerability Scanning

News1 May 2026

Inside the Code War: Defending Against Nation-State Cyber Threats

Podcast20 April 2026

Interview: How YKK Is Securing the World’s Largest Zipper Manufacturing Operation

Interview30 April 2026

CISA and Partners Publish Zero Trust Guidance For OT Security

News30 April 2026

Most Cybersecurity Professionals Feel Undervalued and Underpaid

News27 April 2026

Cyber Resilience Under Pressure: Can Your Organisation Prove Control When it Matters Most?

Webinar11:00 — 12:00, 21 May 2026

Podcasts

Cursor Extension Flaw Exposes Developer API Keys

News29 April 2026

Cursor flaw lets extensions steal API keys and session tokens without user interaction, according to researchers at LayerX

The Rising Risk Landscape for Critical National Infrastructure

Opinion23 April 2026

Critical Vulnerability in Ninja Forms Exposes WordPress Sites

News8 April 2026

GPU Rowhammer Attack Enables Privilege Escalation and Full System Compromise

News7 April 2026

Attackers Rapidly Weaponize Critical Oracle WebLogic RCE, Honeypot Study Finds

News26 March 2026

New Ubuntu Flaw Enables Local Attackers to Gain Root Access

News18 March 2026

CVE-2026-3888 Ubuntu snap flaw lets local users escalate to root via timing-based exploit

'CursorJack’ Attack Path Exposes Code Execution Risk in AI Development Environment

News17 March 2026

CrackArmor Flaws Expose Linux Systems to Privilege Escalation

News16 March 2026

Security Flaw in AWS Bedrock Code Interpreter Raises Alarms

News16 March 2026

Researchers Uncover ‘LeakyLooker’ Vulnerabilities in Google Looker Studio

News11 March 2026

LeakyLooker flaws in Google Looker Studio let attackers run cross-tenant SQL attacks on cloud data

Infosecurity Magazine

Penetration Testing News

Browse other Physical and Information Security Convergence topics

Don’t Miss Out!

Latest News and Features

Don’t miss out!

White Papers

What’s Hot on Infosecurity Magazine?

Podcasts

More news and features

Blogs

Next-Gen Infosec