Penetration Testing News

Scroll down for the latest penetration testing news and information.

Browse other Physical and Information Security Convergence topics

Don’t miss out!

Subscribe to our weekly newsletter for the latest in industry news, expert insights, dedicated information security content and online events.

Security Flaws in WordPress Woffice Theme Prompts Urgent Update

News12 Dec 2024

Crypto.com Launches Massive $2m Bug Bounty Program

News2 Dec 2024

Five Privilege Escalation Flaws Found in Ubuntu needrestart

News20 Nov 2024

Microsoft Power Pages Misconfiguration Leads to Data Exposure

News14 Nov 2024

Misconfigurations in Microsoft Power Pages granting excessive access permissions expose sensitive data, risking PII to unauthorized users

Lazarus Group Exploits Google Chrome Flaw in New Campaign

News24 Oct 2024

Lazarus Group exploited Google Chrome zero-day, infecting systems with Manuscrypt malware

Severe Flaws Discovered in Major E2EE Cloud Storage Services

News21 Oct 2024

Post-Compromise Security: What to do When the Hackers Get in

News Feature20 Aug 2024

Attackers are engaging in extensive post-compromise activity and organizations need to place a greater focus on this aspect of their cybersecurity

Research Uncovers New Microsoft Outlook Vulnerability

News14 Aug 2024

Microsoft 365 Phishing Alert Can Be Hidden with CSS

News7 Aug 2024

Microsoft Outlook Faced Critical Zero-Click RCE Vulnerability

News10 Jul 2024

Don’t miss out!

Subscribe to our weekly newsletter for the latest in industry news, expert insights, dedicated information security content and online events.

White papers

State of Cybersecurity Report 2022

White Paper26 May 2022

Red Teaming: How to Identify Gaps in Your Security Strategy by Thinking Like the Enemy

White Paper9 Jan 2019

Pen Test Metrics 2018

White Paper27 Jul 2018

On-demand webinars

The Infosecurity Magazine End of Year Xmas Quiz (Feat. The Beer Farmers)
15 Dec 2022 Webinar
Reducing Industrial Cyber Risk Amid Digital Transformation
22 Sep 2022 Webinar
Life of: A Penetration Tester
4 Apr 2017 Webinar

What’s hot on Infosecurity Magazine?

New Malware Can Kill Engineering Processes in ICS Environments

News19 Dec 2024

Top 10 Cyber-Attacks of 2024

News Feature2 Dec 2024

US Organizations Still Using Kaspersky Products Despite Ban

News19 Dec 2024

Phishing Attacks Double in 2024

News18 Dec 2024

Crypto-Hackers Steal $2.2bn as North Koreans Dominate

News19 Dec 2024

Recorded Future CEO Calls Russia’s “Undesirable” Listing a “Compliment”

News19 Dec 2024

Cybercriminals Exploit Google Calendar to Spread Malicious Links

News17 Dec 2024

New APIs Discovered by Attackers in Just 29 Seconds

News17 Dec 2024

US Unveils New National Cyber Incident Response Plan

News17 Dec 2024

Texas Tech University Data Breach Impacts 1.4 Million

News17 Dec 2024

Top 10 Cyber-Attacks of 2024

News Feature2 Dec 2024

YouTube Creators Targeted in Global Phishing Campaign

News16 Dec 2024

Alert Fatigue: What Are You and Your Security Teams Missing?

Webinar5 Dec 2024

Dispelling the Myths of Defense-Grade Cybersecurity

Webinar4 Dec 2024

How to Manage Your Risks and Protect Your Financial Data

Webinar30 Oct 2024

New Cyber Regulations: What it Means for UK and EU Businesses

Webinar10 Oct 2024

The Future of Fraud: Defending Against Advanced Account Attacks

Webinar18 Jul 2024

Learn Key Strategies for Industrial Data Security

Webinar27 Jun 2024

Gatwick Airport's Cybersecurity Chief on Supply Chain Risks and CrowdStrike Outage

Interview21 Nov 2024

You're Hired! The Truth About Certifications in Cybersecurity Careers

News Feature2 Dec 2024

T-Mobile Claims Salt Typhoon Did Not Access Customer Data

News28 Nov 2024

Darknet Services Fuel Holiday Scams and E-Commerce Exploits

News26 Nov 2024

Top 10 Cyber-Attacks of 2024

News Feature2 Dec 2024

Google Deindexes Chinese Propaganda Network

News25 Nov 2024

Podcasts

Javvad Malik tells us about his journey from end-user to analyst to vendor & Burnout &mental health in the cybersecurity industry and more.
17 Jun 2022 Podcast

CISOs Reveal Firms Prioritize Savings Over Long-Term Security

News27 Jun 2024

Chinese State-Sponsored Operation “Crimson Palace” Revealed

News5 Jun 2024

Sophos said the campaign aimed to maintain prolonged network access for espionage purposes

XSS Vulnerabilities Found in WordPress Plugin Slider Revolution

News28 May 2024

Critical Vulnerabilities in Cinterion Modems Exposed

News13 May 2024

Mallox Ransomware Deployed Via MS-SQL Honeypot Attack

News13 May 2024

Judge0 Sandbox Vulnerabilities Expose Systems to Takeover Risk

News29 Apr 2024

Dependency Confusion Vulnerability Found in Apache Project

News22 Apr 2024

Quishing Attacks Jump Tenfold, Attachment Payloads Halve

News18 Apr 2024

Report Suggests 93% of Breaches Lead to Downtime and Data Loss

News16 Apr 2024

According to Pentera, firms are allocating 13% of their total IT security budgets to pentesting

LG TV Vulnerabilities Expose 91,000 Devices

News10 Apr 2024

The issues identified permit unauthorized access to the TV’s root system by bypassing authorization mechanisms

Events coming up

Infosecurity Europe 2025

Event3 – 5 Jun 2025

Next-gen infosec

How to Prevent Data Leakages

Next-Gen11 Aug 2023

Top Cloud Misconceptions that Could Damage Your Organization

Next-Gen4 Aug 2023

Improve Asset Visibility in OT Security With Hybrid AI-Cloud Approaches

Next-Gen21 Jul 2023