Penetration Testing News

Scroll down for the latest penetration testing news and information.

Browse other Physical and Information Security Convergence topics

Don’t Miss Out!

Subscribe to our weekly newsletter for the latest in industry news, expert insights, dedicated information security content and online events.

Nine-Year-Old Linux Kernel Flaw Leaks SSH Keys and Password Hashes

News21 May 2026

New Fragnesia Flaw Hands Linux Local Users Root Access

News14 May 2026

ICO Publishes Five-Step Plan to Counter Emerging AI-Powered Attacks

News14 May 2026

The Information Commissioner’s Office has released new guidance on how to mitigate the risk of AI-powered attacks

Avada Builder Flaws Expose One Million WordPress Sites

News13 May 2026

Cline Kanban Flaw Lets Websites Hijack AI Coding Agents

News7 May 2026

Oasis Security finds critical Cline kanban WebSocket flaw exposing AI coding agents to hijack

OpenAI and Anthropic LLMs Used in Critical Infrastructure Cyber-Attack, Warns Dragos

News7 May 2026

Commercial AI models were used to help plan and conduct cyber-attack against operational technology of a water and drainage facility, say researchers

Nine-Year-Old Zero-Day Flaw in Linux Kernel Discovered by AI-Equipped Security Researcher

News1 May 2026

Cursor Extension Flaw Exposes Developer API Keys

News29 April 2026

The Rising Risk Landscape for Critical National Infrastructure

Opinion23 April 2026

Critical Vulnerability in Ninja Forms Exposes WordPress Sites

News8 April 2026

Don’t miss out!

Subscribe to our weekly newsletter for the latest in industry news, expert insights, dedicated information security content and online events.

White Papers

State of Cybersecurity Report 2022

White Paper26 May 2022

Red Teaming: How to Identify Gaps in Your Security Strategy by Thinking Like the Enemy

White Paper9 January 2019

Pen Test Metrics 2018

White Paper27 July 2018

What’s Hot on Infosecurity Magazine?

GitHub Confirms Breach of Internal Repositories Via Malicious VS Code Extension

News20 May 2026

China-Linked Webworm APT Evolves Tactics, Expands to European Targets

News20 May 2026

GitHub Breach Traced to Malicious 'Nx Console' VS Code Extension

News21 May 2026

Android Malware Campaign Used Hundreds of Fake Apps to Silently Charge Users

News20 May 2026

Nine-Year-Old Linux Kernel Flaw Leaks SSH Keys and Password Hashes

News21 May 2026

Grafana Labs Says Code Breach Stemmed from TanStack Attack

News21 May 2026

What Fronter AI Models Like Mythos and GPT-Cyber Mean for Modern Cybersecurity

News Feature15 May 2026

China-Linked Hackers Deploy New TencShell Malware Against Global Manufacturer

News15 May 2026

GitHub Confirms Breach of Internal Repositories Via Malicious VS Code Extension

News20 May 2026

NCSC Publishes Guidance on Securing Agentic AI Use

News18 May 2026

China-Linked Webworm APT Evolves Tactics, Expands to European Targets

News20 May 2026

AI Raises the Bar on Vulnerability Awareness and Secure-by-Design Software

News19 May 2026

Cyber Resilience Under Pressure: Can Your Organisation Prove Control When it Matters Most?

Webinar11:00 — 12:00, 21 May 2026

Financial Services Under Pressure: Supply Chain Risk, Regulation and Operational Resilience

Webinar15:00 — 16:00, 30 April 2026

Behind the Curtain of Microsoft 365 Cybersecurity: Lessons from Overlooked Resilience Gaps

Webinar15:00 — 16:00, 23 April 2026

How to Harness Advanced Intelligence Capabilities to Strengthen Cyber Defence

Webinar15:00 — 16:00, 12 March 2026

Why Resilience‑Focused Cloud Design Is Your Best Defense Against Modern Attacks

Webinar18:00 — 19:00, 9 April 2026

Securing M365 Data and Identity Systems Against Modern Adversaries

Webinar15:00 — 16:00, 22 January 2026

Anthropic Rolls Out Claude Security for AI Vulnerability Scanning

News1 May 2026

Inside the Code War: Defending Against Nation-State Cyber Threats

Podcast20 April 2026

Interview: How YKK Is Securing the World’s Largest Zipper Manufacturing Operation

Interview30 April 2026

CISA and Partners Publish Zero Trust Guidance For OT Security

News30 April 2026

Most Cybersecurity Professionals Feel Undervalued and Underpaid

News27 April 2026

Cyber Resilience Under Pressure: Can Your Organisation Prove Control When it Matters Most?

Webinar11:00 — 12:00, 21 May 2026

Podcasts

GPU Rowhammer Attack Enables Privilege Escalation and Full System Compromise

News7 April 2026

GPUBreach uses GPU Rowhammer on GDDR6 to flip bits, corrupt page tables and escalate to system root

Attackers Rapidly Weaponize Critical Oracle WebLogic RCE, Honeypot Study Finds

News26 March 2026

New Ubuntu Flaw Enables Local Attackers to Gain Root Access

News18 March 2026

'CursorJack’ Attack Path Exposes Code Execution Risk in AI Development Environment

News17 March 2026

CrackArmor Flaws Expose Linux Systems to Privilege Escalation

News16 March 2026

Security Flaw in AWS Bedrock Code Interpreter Raises Alarms

News16 March 2026

Researchers Uncover ‘LeakyLooker’ Vulnerabilities in Google Looker Studio

News11 March 2026

AI Security Startups Dominate New Cyber Innovation Awards

News9 March 2026

Over one in five winners of IT-Harvest’s 2026 Cyber 150 are AI security companies

ContextCrush Flaw Exposes AI Development Tools to Attacks

News5 March 2026

44% Surge in App Exploits as AI Speeds Up Cyber-Attacks, IBM Finds

News25 February 2026

IBM's 2026 X-Force report reveals 44% rise in cyber-attacks on public apps, driven by AI and flaws

Blogs

Biometric Authentication is Easier to Fake Than You Think

Blog12 May 2026

Open Source is the Tip of the Iceberg: Why Proprietary Software, Hardware and Protocols Face Greater AI-Driven Security Risk

Blog6 May 2026

Next-Gen Infosec

How to Prevent Data Leakages

Next-Gen11 August 2023

Top Cloud Misconceptions that Could Damage Your Organization

Next-Gen4 August 2023

Improve Asset Visibility in OT Security With Hybrid AI-Cloud Approaches

Next-Gen21 July 2023