Infosecurity Magazine

Latest News and Features

Malware Discovered in 19 Visual Studio Code Extensions

News

A new campaign involving 19 malicious Visual Studio Code extensions used a legitimate npm package to embed malware in dependency folders

Scam-Busting FCA Firm Checker Tool Given Cautious Welcome

News

Google Releases Critical Chrome Security Update to Address Three Zero-Days

News

Google has released a Chrome security update to fix three zero-day vulnerabilities, including a high-severity flaw with an active exploit

“Cyber Tax” Warning as Two-Fifths of SMBs Raise Prices After Breach

News

ClickFix Social Engineering Sparks Rise of CastleLoader Attacks

News

Pro-Russia Hackers Target US Critical Infrastructure in New Wave

News

Google Fixes Zero Click Gemini Enterprise Flaw That Exposed Corporate Data

News

The flaw, dubbed ‘GeminiJack,’ exploits the trust boundary between user-controlled content in data sources and the AI model’s instruction processing

Log4Shell Downloaded 40 Million Times in 2025

News

Microsoft Fixes Three Zero-Days in Final Patch Tuesday of 2025

News

React2Shell Exploit Campaigns Tied to North Korean Cyber Intrusion Tactics

News

White Papers

The Customer Identity Buyer’s Guide

White Paper

How Leading Brands Stop Fraud & Prevent Threats

White Paper

The Digital Operational Resilience Act (DORA): A Comprehensive Guide to TPRM Compliance

White Paper

On-Demand Webinars

  • Revisiting CIA: Developing Your Security Strategy in the SaaS Shared Reality
  • Mastering AI Security With ISACA’s New AAISM Certification
  • Exposing AI’s Blind Spots: Security vs Safety in the Age of Gen AI
  • Audit & Compliance in the Era of AI and Emerging Technology
  • Modernizing GRC: From Checkbox to Strategic Advantage
  • How Mid-Market Businesses Can Leverage Microsoft Security for Proactive Defenses
  • Risk-Based IT Compliance: The Case for Business-Driven Cyber Risk Quantification
  • OT Security Ecosystem for Targeted Risk Reduction and Reporting
  • The Invisible Frontline: Proactive Approaches to Browser Defense
  • Mastering Identity and Access for Non-Human Cloud Entities

Podcasts

  • How 2025 Shaped the Future of Cybersecurity
  • Beyond Bug Bounties: How Private Researchers Are Taking Down Ransomware Operations
  • Can AI Solve the Vulnerability Problem in Critical Infrastructure?
  • ToolShell Deep Dive: The SharePoint Exploit Crisis Uncovered
  • Unpacking Trump's Cybersecurity Executive Order
  • Your Guide to Infosecurity Europe: Insider Tips from Leading Cybersecurity Experts
  • Vulnerability Overload: The NVD and CVE Challenges Ahead
  • The Information Heist: Cracking the Code on Infostealers
  • Unlocking Infosecurity Europe: Must-See Sessions & Pro Tips
  • Change Healthcare Cyber-Attack: Inside the Disruption and the Lessons Learned

More news and features

Malicious VS Code Extensions Deploy Advanced Infostealer

News

DeadLock Ransomware Uses BYOVD to Evade Security Measures

News

Cisco Talos has detected new tactics from a financially motivated actor using DeadLock ransomware

UK NCSC Raises Alarms Over Prompt Injection Attacks

News

Gartner Calls For Pause on AI Browser Use

News

Energy Operations: Managing Password Security and Continuity

Blog

ClayRat Android Spyware Expands Capabilities

News

A new version of ClayRat Android spyware features enhanced surveillance and device-control features

Marquis Software Breach Affects Over 780,000 Nationwide

News

Portugal Revises Cybercrime Law to Protect Security Researchers

News

Security researchers will now be protected from prosecution in Portugal as long as they meet certain conditions

React2Shell Under Active Exploitation by China-Nexus Hackers

News

UK ICO Demands “Urgent Clarity” on Facial Recognition Bias Claims

News

Blogs

Energy Operations: Managing Password Security and Continuity

Blog

Securing AI for Cyber Resilience: Building Trustworthy and Secure AI Systems

Blog

Next-Gen Infosec

How to Prevent Data Leakages

Next-Gen

Top Cloud Misconceptions that Could Damage Your Organization

Next-Gen

Improve Asset Visibility in OT Security With Hybrid AI-Cloud Approaches

Next-Gen