Risk and Vulnerability Assessment News

Scroll down for the latest risk and vulnerability assessment news and information.

Browse other Risk Management topics

Don’t miss out!

Subscribe to our weekly newsletter for the latest in industry news, expert insights, dedicated information security content and online events.

CISA Throws Lifeline to CVE Program with Last-Minute Contract Extension

News17 Apr 2025

MITRE will be able to keep running the CVE program for at least the next 11 months

Network Edge Devices the Biggest Entry Point for Attacks on SMBs

News17 Apr 2025

Chaos Reigns as MITRE Set to Cease CVE and CWE Operations

News16 Apr 2025

Organizations Found to Address Only 21% of GenAI-Related Vulnerabilities

News15 Apr 2025

NVD Revamps Operations as Vulnerability Reporting Surges

News11 Apr 2025

The NVD program manager has announced undergoing process improvements to catch up with its growing vulnerability backlog

CISA Warns of CrushFTP Vulnerability Exploitation in the Wild

News8 Apr 2025

Chinese State Hackers Exploiting Newly Disclosed Ivanti Flaw

News4 Apr 2025

Solar Power System Vulnerabilities Could Result in Blackouts

News28 Mar 2025

Forescout researchers found multiple vulnerabilities in leading solar power system manufacturers, which could be exploited to cause emergencies and blackouts

Nine in Ten Healthcare Organizations Use the Most Vulnerable IoT Devices

News28 Mar 2025

No MFA? Expect Hefty Fines, UK’s ICO Warns

News27 Mar 2025

Don’t miss out!

Subscribe to our weekly newsletter for the latest in industry news, expert insights, dedicated information security content and online events.

White papers

Gcore Radar: DDoS Attack Trends Q3 to Q4, 2023

White Paper20 Mar 2024

Steps to Get Ahead of Insider Threats

White Paper21 Jul 2022

Financial Sector Quarterly Threat Landscape

White Paper7 Jul 2022

On-demand webinars

How to Implement Attack Surface Management in the AI and Cloud Age
3 Apr 2025 Webinar
Auditing AI Risk: Essential Strategies for IT & Compliance Leaders
23 Jan 2025 Webinar
Navigating Exposures in Energy ICS Environments
19 Dec 2024 Webinar
How to Proactively Remediate Rising Web Application Threats
30 May 2024 Webinar
How to Optimize Third-Party Risk Management Programs Through NIST CSF 2.0
16 May 2024 Webinar
Experiencing a DDoS Simulation to Enhance Defenses
2 May 2024 Webinar
How Can the Boardroom Boost Cyber Resilience?
29 Feb 2024 Webinar
Forward-Thinking Practices to Manage IT Risk
12 Oct 2023 Webinar
Vulnerability Management: Why a Risk-Based Approach is Essential
28 Sep 2023 Webinar
How to Mitigate Cyber-Risks Through a Threat Exposure Management Program
20 Apr 2023 Webinar

What’s hot on Infosecurity Magazine?

Midnight Blizzard Targets European Diplomats with Wine Tasting Phishing Lure

News18 Apr 2025

Hertz Data Breach Exposes Customer Information in Cleo Zero-Day Attack

News16 Apr 2025

NTLM Hash Exploit Targets Poland and Romania Days After Patch

News17 Apr 2025

Senators Urge Cyber-Threat Sharing Law Extension Before Deadline

News17 Apr 2025

Network Edge Devices the Biggest Entry Point for Attacks on SMBs

News17 Apr 2025

92% of Mobile Apps Found to Use Insecure Cryptographic Methods

News16 Apr 2025

Chaos Reigns as MITRE Set to Cease CVE and CWE Operations

News16 Apr 2025

Trump Administration Shakes Up CISA with Staff and Funding Cuts

News12 Mar 2025

Digital Certificate Lifespans to Fall to 47 Days by 2029

News14 Apr 2025

NVD Revamps Operations as Vulnerability Reporting Surges

News11 Apr 2025

Google Cloud: China Achieves “Cyber Superpower” Status

News10 Apr 2025

CISA Throws Lifeline to CVE Program with Last-Minute Contract Extension

News17 Apr 2025

The Evolving Ransomware Landscape: A 2025 Survival Guide

Webinar15 Apr 2025

Proactive Incident Response and Recovery: Navigating Ransomware Attacks

Webinar15 Apr 2025

Safeguarding Critical Supply Chain Data Through Effective Risk Assessment

Webinar10 Apr 2025

Fireside Chat: How Initial Access Brokers Fuel the Ransomware-as-a-Service Model

Webinar15 Apr 2025

Ransomware Negotiations: Mastering an Attacker’s Mindset and Minimizing Leverage

Webinar15 Apr 2025

How to Implement Attack Surface Management in the AI and Cloud Age

Webinar3 Apr 2025

Gatwick Airport's Cybersecurity Chief on Supply Chain Risks and CrowdStrike Outage

Interview21 Nov 2024

You're Hired! The Truth About Certifications in Cybersecurity Careers

News Feature2 Dec 2024

T-Mobile Claims Salt Typhoon Did Not Access Customer Data

News28 Nov 2024

Darknet Services Fuel Holiday Scams and E-Commerce Exploits

News26 Nov 2024

Top 10 Cyber-Attacks of 2024

News Feature2 Dec 2024

Google Deindexes Chinese Propaganda Network

News25 Nov 2024

Podcasts

Into Security Podcast - Episode 15
29 May 2020 Podcast

Remote Control Cybercrime: An RMM Protection Guide for MSPs

Blog27 Mar 2025

CISA Urges All Organizations to Patch Exploited Critical Ivanti Vulnerabilities

News11 Mar 2025

Achilles Email: Defending the Eternal Attack Surface

Blog10 Mar 2025

Email continues to be the number one point of vulnerability for businesses and MSPs, new Acronis research has demonstrated

Ransomware Groups Favor Repeatable Access Over Mass Vulnerability Exploits

News7 Mar 2025

Combating the Invisible Threat of In-Memory Cyber-Attacks

Opinion7 Mar 2025

VMware Warns Customers to Patch Actively Exploited Zero-Day Vulnerabilities

News4 Mar 2025

Cloud software firm VMware has issued a critical security advisory, detailing three zero-day vulnerabilities being actively exploited in the wild

Third-Party Attacks Drive Major Financial Losses in 2024

News28 Feb 2025

From Legacy Systems to 5G: Enterprise Security Threats in 2025

Opinion28 Feb 2025

Old Vulnerabilities Among the Most Widely Exploited

News28 Feb 2025

Software Vulnerabilities Take Almost Nine Months to Patch

News27 Feb 2025

Veracode found a 47% increase in the average time taken to patch software vulnerabilities, driven by growing reliance on third-party code

Events coming up

Infosecurity Europe 2025

Event3 – 5 Jun 2025

Next-gen infosec

How to Prevent Data Leakages

Next-Gen11 Aug 2023

Top Cloud Misconceptions that Could Damage Your Organization

Next-Gen4 Aug 2023

Improve Asset Visibility in OT Security With Hybrid AI-Cloud Approaches

Next-Gen21 Jul 2023