Vulnerability Management News

Scroll down for the latest news and information covering vulnerability management.

Browse other Risk Management topics

Don’t miss out!

Subscribe to our weekly newsletter for the latest in industry news, expert insights, dedicated information security content and online events.

Five Privilege Escalation Flaws Found in Ubuntu needrestart

News20 Nov 2024

Five LPE flaws in Ubuntu’s needrestart utility enable attackers to gain root access in versions prior to 3.8

Apple Issues Emergency Security Update for Actively Exploited Vulnerabilities

News20 Nov 2024

OWASP Warns of Growing Data Exposure Risk from AI in New Top 10 List for LLMs

News20 Nov 2024

OWASP has updated its Top 10 list of risks for LLMs and GenAI, upgrading several areas and introducing new categories

Palo Alto Networks Confirms New Zero-Day Being Exploited by Threat Actors

News15 Nov 2024

Bank of England U-turns on Vulnerability Disclosure Rules

News14 Nov 2024

Microsoft Fixes Four More Zero-Days in November Patch Tuesday

News13 Nov 2024

Microsoft has addressed four zero-day vulnerabilities this month, two of which have been exploited

New Remcos RAT Variant Targets Windows Users Via Phishing

News11 Nov 2024

Why Healthcare Needs More Than AI to Fight Cyber-Attacks

Opinion8 Nov 2024

Androxgh0st Botnet Adopts Mozi Payloads, Expands IoT Reach

News7 Nov 2024

Interlock Ransomware Targets US Healthcare, IT and Government Sectors

News7 Nov 2024

Don’t miss out!

Subscribe to our weekly newsletter for the latest in industry news, expert insights, dedicated information security content and online events.

Webinars coming up

Navigating Exposures in Energy ICS Environments

19 Dec 2024, 13:00 EST, 10:00 PST

White papers

Gcore Radar: DDoS Attack Trends Q3 to Q4, 2023

White Paper20 Mar 2024

5 Ways to Strengthen Your Active Directory Password Policy

White Paper30 Oct 2023

SASE Security Buyers Guide

White Paper26 Jan 2023

On-demand webinars

How to Proactively Remediate Rising Web Application Threats
30 May 2024 Webinar
How to Optimize Third-Party Risk Management Programs Through NIST CSF 2.0
16 May 2024 Webinar
Experiencing a DDoS Simulation to Enhance Defenses
2 May 2024 Webinar
How Can the Boardroom Boost Cyber Resilience?
29 Feb 2024 Webinar
Mastering Software Supply Chain Security with Strategic Defense Mechanisms
30 Nov 2023 Webinar
Forward-Thinking Practices to Manage IT Risk
12 Oct 2023 Webinar
Vulnerability Management: Why a Risk-Based Approach is Essential
28 Sep 2023 Webinar
The Infosecurity Magazine End of Year Xmas Quiz (Feat. The Beer Farmers)
15 Dec 2022 Webinar
Learn How to Reduce Business Costs with Ransomware Readiness
8 Dec 2022 Webinar
How a Threat Response Unit Unmasks a Hacker
1 Dec 2022 Webinar

What’s hot on Infosecurity Magazine?

Ransomware Gangs on Recruitment Drive for Pen Testers

News19 Nov 2024

Cybercriminals Exploit Weekend Lull to Launch Ransomware Attacks

News20 Nov 2024

Swiss Cyber Agency Warns of QR Code Malware in Mail Scam

News18 Nov 2024

Companies Take Over Seven Months to Recover From Cyber Incidents

News19 Nov 2024

Palo Alto Networks Patches Critical Firewall Vulnerability

News19 Nov 2024

Chinese APT Group Targets Telecom Firms Linked to Belt and Road Initiative

News20 Nov 2024

Palo Alto Networks Confirms New Zero-Day Being Exploited by Threat Actors

News15 Nov 2024

watchTowr Finds New Zero-Day Vulnerability in Fortinet Products

News15 Nov 2024

Bank of England U-turns on Vulnerability Disclosure Rules

News14 Nov 2024

AI Threat to Escalate in 2025, Google Cloud Warns

News13 Nov 2024

Surge in DocuSign Phishing Attacks Target US State Contractors

News18 Nov 2024

Swiss Cyber Agency Warns of QR Code Malware in Mail Scam

News18 Nov 2024

How to Manage Your Risks and Protect Your Financial Data

Webinar30 Oct 2024

New Cyber Regulations: What it Means for UK and EU Businesses

Webinar10 Oct 2024

Learn Key Strategies for Industrial Data Security

Webinar27 Jun 2024

Beyond Passwords: Securing the Digital Age with MFA, 2FA, and Passwordless Authentication

Webinar19 Mar 2024

Bouncing Back: Building Organizational Resilience in the Face of Cyber-Attack

Webinar20 Mar 2024

Untangling the Web: Navigating Third-Party Risk in a Hyperconnected World

Webinar19 Mar 2024

Defenders Outpace Attackers in AI Adoption

News7 Nov 2024

ISACA CEO Erik Prusch on AI Fundamentals, Workforce, and Tackling Cybersecurity Challenges

Interview30 Oct 2024

31 New Ransomware Groups Join the Ecosystem in 12 Months

News8 Oct 2024

How Belgium's Leonidas Project Boosts National Cyber Resilience

News Feature28 Oct 2024

Protecting the Healthcare Supply Chain Against Russian Ransomware Attacks

Opinion1 Nov 2024

Snowflake Hacking Suspect Arrested in Canada

News6 Nov 2024

Podcasts

The Team are Joined by Cybersecurity Experts to Review 2022 and How to Prepare Information Security for 2023
14 Dec 2022 Podcast
Beth Maundrill is joined by Dr. Jason Nurse, Associate Professor in Cyber Security at the University of Kent.
16 Nov 2022 Podcast
Beth Maundrill and James Coker analyze Insider Threats as September is National Insider Threats Awareness Month.
27 Sep 2022 Podcast
Into Security Podcast - Episode 15
29 May 2020 Podcast

IRISSCON: Organizations Still Falling Victim to Predictable Cyber-Attacks

News6 Nov 2024

Organizations remain unprepared to defend against known and predictable attacks like ransomware

Google Researchers Claim First Vulnerability Found Using AI

News4 Nov 2024

LiteSpeed Cache Plugin Vulnerability Poses Admin Access Risk

News30 Oct 2024

Apple Rolls Out Major Security Update to Patch macOS and iOS Vulnerabilities

News30 Oct 2024

Researchers Discover Over 70 Zero-Day Bugs at Pwn2Own Ireland

News28 Oct 2024

Lazarus Group Exploits Google Chrome Flaw in New Campaign

News24 Oct 2024

Lazarus Group exploited Google Chrome zero-day, infecting systems with Manuscrypt malware

Fortinet Confirms Exploitation of Critical FortiManager Zero-Day Vulnerability

News24 Oct 2024

UK Government Urges Organizations to Get Cyber Essentials Certified

News24 Oct 2024

On the 10th anniversary since Cyber Essentials was introduced, the UK government has highlighted the impact the scheme has had in preventing attacks

US Energy Sector Vulnerable to Supply Chain Attacks

News23 Oct 2024

SEC Charges Tech Firms Over Misleading SolarWinds Hack Disclosures

News22 Oct 2024

Events coming up

Infosecurity Europe 2025

Event3 – 5 Jun 2025

Next-gen infosec

How to Prevent Data Leakages

Next-Gen11 Aug 2023

Top Cloud Misconceptions that Could Damage Your Organization

Next-Gen4 Aug 2023

Improve Asset Visibility in OT Security With Hybrid AI-Cloud Approaches

Next-Gen21 Jul 2023