Secure Coding News

Scroll down for all the latest news and information on secure coding.

Browse other Application Security topics

Don’t Miss Out!

Subscribe to our weekly newsletter for the latest in industry news, expert insights, dedicated information security content and online events.

SQL Injection Flaw Affects 40,000 WordPress Sites

News3 February 2026

40,000 WordPress sites are vulnerable to SQL injection in Quiz and Survey Master plugin

Vibe-Coded Moltbook Exposes User Data, API Keys and More

News3 February 2026

Autonomous System Uncovers Long-Standing OpenSSL Flaws

News28 January 2026

A recent update has fixed 12 vulnerabilities in OpenSSL, some existing in the codebase for years

Critical and High Severity n8n Sandbox Flaws Allow RCE

News28 January 2026

Researchers Uncover 454,000+ Malicious Open Source Packages

News28 January 2026

Pyodide Sandbox Escape Enables Remote Code Execution in Grist-Core

News27 January 2026

Critical sandbox escape vulnerability in Grist-Core enables remote code execution via a malicious formula

PeckBirdy Framework Tied to China-Aligned Cyber Campaigns

News27 January 2026

CISA Releases List of Post-Quantum Cryptography Product Categories

News26 January 2026

Critical Appsmith Flaw Enables Account Takeovers

News22 January 2026

RealHomes CRM Plugin Flaw Affected 30,000 WordPress Sites

News22 January 2026

Don’t miss out!

Subscribe to our weekly newsletter for the latest in industry news, expert insights, dedicated information security content and online events.

White Papers

Gcore Radar: DDoS Attack Trends Q3 to Q4, 2023

White Paper20 March 2024

Secure Coding Culture Playbook

White Paper9 December 2022

Web Application Security for Pharma and Healthcare

White Paper30 June 2022

On-Demand Webinars

What’s Hot on Infosecurity Magazine?

New Hacking Campaign Exploits Microsoft Windows WinRAR Vulnerability

News5 February 2026

Hundreds of Malicious Crypto Trading Add-Ons Found in Moltbot/OpenClaw

News3 February 2026

Two Critical Flaws in n8n AI Workflow Automation Platform Allow Complete Takeover

News4 February 2026

Smartphones Now Involved in Nearly Every Police Investigation

News5 February 2026

AI Drives Doubling of Phishing Attacks in a Year

News4 February 2026

SolarWinds Web Help Desk Vulnerability Actively Exploited

News4 February 2026

NSA Publishes New Zero Trust Implementation Guidelines

News2 February 2026

Cybersecurity M&A Roundup: CrowdStrike and Palo Alto Networks Lead Investment in AI Security

News Feature2 February 2026

Data Privacy Day: Why AI’s Rise Makes Protecting Personal Data More Critical Than Ever

News Feature28 January 2026

Over 80% of Ethical Hackers Now Use AI

News27 January 2026

New CISA Guidance Targets Insider Threat Risks

News29 January 2026

Number of Cybersecurity Pros Surges 194% in Four Years

News29 January 2026

Securing M365 Data and Identity Systems Against Modern Adversaries

Webinar15:00 — 16:00, 22 January 2026

Five Non-Negotiable Strategies to Get Identity Security Right in 2026

Webinar18:00 — 18:30, 22 January 2026

How to Implement Attack Surface Management in the AI and Cloud Age

Webinar15:00 — 16:00, 3 April 2025

Cyber Resilience in the AI Era: New Challenges and Opportunities

Webinar15:00 — 16:00, 25 March 2025

Safeguarding Critical Supply Chain Data Through Effective Risk Assessment

Webinar15:00 — 16:00, 10 April 2025

Dispelling the Myths of Defense-Grade Cybersecurity

Webinar11:00 — 12:00, 4 December 2024

Regulating AI: Where Should the Line Be Drawn?

Opinion12 November 2025

What Is Vibe Coding? Collins’ Word of the Year Spotlights AI’s Role and Risks in Software

News Feature11 November 2025

Risk-Based IT Compliance: The Case for Business-Driven Cyber Risk Quantification

Webinar15:00 — 16:00, 23 October 2025

Bridging the Divide: Actionable Strategies to Secure Your SaaS Environments

Blog7 November 2025

NCSC Set to Retire Web Check and Mail Check Tools

News10 November 2025

Beyond Bug Bounties: How Private Researchers Are Taking Down Ransomware Operations

Podcast4 November 2025

Podcasts

Zero-Day Exploits Surge, Nearly 30% of Flaws Attacked Before Disclosure

News22 January 2026

VulnCheck analysts found that vulnerabilities exploited before being publicly disclosed rose from 23.6% in 2024 to 28.96% in 2025

Prompt Injection Bugs Found in Official Anthropic Git MCP Server

News20 January 2026

Researchers Exploit Bug in StealC Infostealer to Collect Evidence

News19 January 2026

Global Agencies Release New Guidance to Secure Industrial Networks

News15 January 2026

CodeBuild Flaw Put AWS Console Supply Chain At Risk

News15 January 2026

DeadLock Ransomware Uses Polygon Smart Contracts For Proxy Rotation

News14 January 2026

A new DeadLock ransomware operation uses Polygon blockchain smart contracts to manage proxy server addresses

CISA Flags Actively Exploited Gogs Vulnerability With No Patch

News13 January 2026

Global Magecart Campaign Targets Six Card Networks

News13 January 2026

Silent Push has discovered a new Magecart campaign targeting six major payment network providers that has been running since 2022

Palo Alto Networks Introduces New Vibe Coding Security Governance Framework

News12 January 2026

New Zero-Click Attack Lets ChatGPT User Steal Data

News8 January 2026

Infosecurity Magazine

Secure Coding News

Browse other Application Security topics

Don’t Miss Out!

Latest News and Features

Don’t miss out!

White Papers

On-Demand Webinars

What’s Hot on Infosecurity Magazine?

Podcasts

More news and features

Blogs

Next-Gen Infosec