Infosecurity Magazine

Latest News and Features

Hundreds of Malicious Crypto Trading Add-Ons Found in Moltbot/OpenClaw

News

SQL Injection Flaw Affects 40,000 WordPress Sites

News

40,000 WordPress sites are vulnerable to SQL injection in Quiz and Survey Master plugin

DockerDash Exposes AI Supply Chain Weakness In Docker's Ask Gordon

News

Sophos CISO on Software Flaws, Vendor Risk and Secure by Design (video)

Interview

UK ICO Launches Investigation into X Over AI Generated Non-Consensual Sexual Imagery

News

UK Data Protection Watchdog has “serious concerns” over data privacy on Elon Musk’s social platform

Researchers Warn of New “Vect” RaaS Variant

News

A new ransomware-as-a-service operation dubbed “Vect” features custom malware

Cybercrime Unit of Paris Prosecutors Raid Elon Musk’s X Offices in France

News

New Password-Stealing Phishing Campaign Targets Corporate Dropbox Credentials

News

Vibe-Coded Moltbook Exposes User Data, API Keys and More

News

Five Single Sign-On Best Practices to Reduce Access Risk in 2026

Blog

Webinars Coming Up

Time Is a New Attack Surface: Securing Networks with Trusted Time Synchronization

How To Enhance Security Operations with AI-Powered Defenses

White Papers

The Customer Identity Buyer’s Guide

White Paper

How Leading Brands Stop Fraud & Prevent Threats

White Paper

The Digital Operational Resilience Act (DORA): A Comprehensive Guide to TPRM Compliance

White Paper

On-Demand Webinars

  • Five Non-Negotiable Strategies to Get Identity Security Right in 2026
  • Securing M365 Data and Identity Systems Against Modern Adversaries
  • Revisiting CIA: Developing Your Security Strategy in the SaaS Shared Reality
  • Mastering AI Security With ISACA’s New AAISM Certification
  • Audit & Compliance in the Era of AI and Emerging Technology
  • Modernizing GRC: From Checkbox to Strategic Advantage
  • How Mid-Market Businesses Can Leverage Microsoft Security for Proactive Defenses
  • Risk-Based IT Compliance: The Case for Business-Driven Cyber Risk Quantification
  • OT Security Ecosystem for Targeted Risk Reduction and Reporting
  • The Invisible Frontline: Proactive Approaches to Browser Defense

Podcasts

  • How 2025 Shaped the Future of Cybersecurity
  • Beyond Bug Bounties: How Private Researchers Are Taking Down Ransomware Operations
  • Can AI Solve the Vulnerability Problem in Critical Infrastructure?
  • ToolShell Deep Dive: The SharePoint Exploit Crisis Uncovered
  • Unpacking Trump's Cybersecurity Executive Order
  • Your Guide to Infosecurity Europe: Insider Tips from Leading Cybersecurity Experts
  • Vulnerability Overload: The NVD and CVE Challenges Ahead
  • The Information Heist: Cracking the Code on Infostealers
  • Unlocking Infosecurity Europe: Must-See Sessions & Pro Tips
  • Change Healthcare Cyber-Attack: Inside the Disruption and the Lessons Learned

More news and features

NSA Publishes New Zero Trust Implementation Guidelines

News

NSA released new guidelines to help organizations achieve target-level Zero Trust maturity

Notepad++ Update Hijacking Linked to Hosting Provider Compromise

News

Fancy Bear Exploits Microsoft Office Flaw in Ukraine, EU Cyber-Attacks

News

Cybersecurity M&A Roundup: CrowdStrike and Palo Alto Networks Lead Investment in AI Security

News Feature

Android RAT Uses Hugging Face to Host Malware

News

Former Google Engineer Found Guilty of Stealing AI Secrets

News

Labyrinth Chollima Evolves into Three North Korean Hacking Groups

News

CrowdStrike assessed that two new threat actor groups have spun off from North Korean Labyrinth Chollima hackers

New AI-Developed Malware Campaign Targets Iranian Protests

News

National Crime Agency and NatWest Issue Joint Warning Over Invoice Fraud Threat

News

Precision Becomes the New Playbook for Software Supply Chain Attacks

Opinion

Adversaries are adopting a more precise approach to supply chain compromise. Organizations need to rethink what “secure software” really means.

Blogs

Five Single Sign-On Best Practices to Reduce Access Risk in 2026

Blog

Zero Trust and Active Directory: What Modern AD Audits Reveal

Blog

Next-Gen Infosec

How to Prevent Data Leakages

Next-Gen

Top Cloud Misconceptions that Could Damage Your Organization

Next-Gen

Improve Asset Visibility in OT Security With Hybrid AI-Cloud Approaches

Next-Gen