Penetration Testing News

Scroll down for the latest penetration testing news and information.

Browse other Physical and Information Security Convergence topics

Don’t Miss Out!

Subscribe to our weekly newsletter for the latest in industry news, expert insights, dedicated information security content and online events.

Nine-Year-Old Zero-Day Flaw in Linux Kernel Discovered by AI-Equipped Security Researcher

News1 May 2026

Cursor Extension Flaw Exposes Developer API Keys

News29 April 2026

Cursor flaw lets extensions steal API keys and session tokens without user interaction, according to researchers at LayerX

The Rising Risk Landscape for Critical National Infrastructure

Opinion23 April 2026

Critical Vulnerability in Ninja Forms Exposes WordPress Sites

News8 April 2026

Ninja Forms File Upload RCE via unauthenticated arbitrary file upload; update to 3.3.27 immediately

GPU Rowhammer Attack Enables Privilege Escalation and Full System Compromise

News7 April 2026

Attackers Rapidly Weaponize Critical Oracle WebLogic RCE, Honeypot Study Finds

News26 March 2026

New Ubuntu Flaw Enables Local Attackers to Gain Root Access

News18 March 2026

'CursorJack’ Attack Path Exposes Code Execution Risk in AI Development Environment

News17 March 2026

CrackArmor Flaws Expose Linux Systems to Privilege Escalation

News16 March 2026

Security Flaw in AWS Bedrock Code Interpreter Raises Alarms

News16 March 2026

DNS-based attack in AWS Bedrock AgentCore lets AI sandboxes exfiltrate cloud data

Don’t miss out!

Subscribe to our weekly newsletter for the latest in industry news, expert insights, dedicated information security content and online events.

White Papers

State of Cybersecurity Report 2022

White Paper26 May 2022

Red Teaming: How to Identify Gaps in Your Security Strategy by Thinking Like the Enemy

White Paper9 January 2019

Pen Test Metrics 2018

White Paper27 July 2018

What’s Hot on Infosecurity Magazine?

UK Commits £90m for Cybersecurity and Pushes for ‘Resilience Pledge’

News22 April 2026

Cursor Extension Flaw Exposes Developer API Keys

News29 April 2026

Critical Flaw Turns Vect Ransomware into Data Destroying Wiper

News29 April 2026

Most Cybersecurity Professionals Feel Undervalued and Underpaid

News27 April 2026

BlackFile Group Targets Retail and Hospitality with Vishing Attacks

News27 April 2026

Unchecked AI Agents Cause Cybersecurity Incidents at Two Thirds of Firms

News21 April 2026

AI Rush is Reviving Old Cybersecurity Mistakes, Mandiant VP Warns

News24 April 2026

How to Manage Large PST Files in Microsoft Outlook

Blog28 June 2023

Unchecked AI Agents Cause Cybersecurity Incidents at Two Thirds of Firms

News21 April 2026

Systemic Flaw in MCP Protocol Could Expose 150 Million Downloads

News16 April 2026

Ransomware Turf War as 0APT and KryBit Groups Trade Blows

News28 April 2026

Npm Supply Chain Malware Attack Targets Developers With Worm-Like Propagation

News24 April 2026

Strengthening Business Resilience Through Understanding the AI Cyber Threat Landscape

Webinar14:50 — 15:50, 28 April 2026

Agentic AI in the Wild: Security Risks and the Rise of Non-Human Identities

Webinar16:40 — 17:40, 28 April 2026

AI Governance as a Growth Enabler: How CISOs Align Security with Business Objectives

Webinar17:50 — 18:50, 28 April 2026

Keynote: Identity for AI. Trust for Humanity

Webinar14:10 — 14:40, 28 April 2026

SANS Fireside Chat: Preparing Security Programs for the Mythos Era

Webinar16:00 — 16:30, 28 April 2026

Behind the Curtain of Microsoft 365 Cybersecurity: Lessons from Overlooked Resilience Gaps

Webinar15:00 — 16:00, 23 April 2026

Anthropic Rolls Out Claude Security for AI Vulnerability Scanning

News1 May 2026

Inside the Code War: Defending Against Nation-State Cyber Threats

Podcast20 April 2026

Interview: How YKK Is Securing the World’s Largest Zipper Manufacturing Operation

Interview30 April 2026

CISA and Partners Publish Zero Trust Guidance For OT Security

News30 April 2026

Most Cybersecurity Professionals Feel Undervalued and Underpaid

News27 April 2026

Cyber Resilience Under Pressure: Can Your Organization Prove Control When it Matters Most?

Webinar11:00 — 12:00, 21 May 2026

Podcasts

Researchers Uncover ‘LeakyLooker’ Vulnerabilities in Google Looker Studio

News11 March 2026

AI Security Startups Dominate New Cyber Innovation Awards

News9 March 2026

ContextCrush Flaw Exposes AI Development Tools to Attacks

News5 March 2026

44% Surge in App Exploits as AI Speeds Up Cyber-Attacks, IBM Finds

News25 February 2026

Malicious NuGet Package Targets Stripe Developers

News25 February 2026

Malicious NuGet package mimicking Stripe's library targeted developers

AI Assistants Used as Covert Command-and-Control Relays

News18 February 2026

VoidLink Malware Exhibits Multi-Cloud Capabilities and AI Code

News9 February 2026

VoidLink, a Linux-based C2 framework, facilitates credential theft, data exfiltration across clouds

SQL Injection Flaw Affects 40,000 WordPress Sites

News3 February 2026

DockerDash Exposes AI Supply Chain Weakness In Docker's Ask Gordon

News3 February 2026

DockerDash vulnerability allows RCE and data exfiltration via unverified metadata in Ask Gordon

Over 80% of Ethical Hackers Now Use AI

News27 January 2026

Blogs

Are Rainbow Tables Still Relevant in 2026?

Blog14 April 2026

Microsoft 365 Tenant Security: How to Stay in Control of Your Data

Blog9 April 2026

Next-Gen Infosec

How to Prevent Data Leakages

Next-Gen11 August 2023

Top Cloud Misconceptions that Could Damage Your Organization

Next-Gen4 August 2023

Improve Asset Visibility in OT Security With Hybrid AI-Cloud Approaches

Next-Gen21 July 2023

Infosecurity Magazine

Penetration Testing News

Browse other Physical and Information Security Convergence topics

Don’t Miss Out!

Latest News and Features

Don’t miss out!

White Papers

What’s Hot on Infosecurity Magazine?

Podcasts

More news and features

Blogs

Next-Gen Infosec