Infosecurity Magazine

Information Risk Management News

Scroll down for all the latest information risk management news and articles.

Latest News and Features

New “Lies-in-the-Loop” Attack Undermines AI Safety Dialogs

News

A novel attack technique dubbed ”Lies-in-the-Loop” (LITL) has been observed manipulating human approval prompts in agentic AI systems

Top 25 Most Dangerous Software Weaknesses of 2025 Revealed

News

MITRE has released its Top 25 CWE list for 2025, compiled from software and hardware flaws behind almost 40,000 CVEs

Pro-Russia Hackers Target US Critical Infrastructure in New Wave

News

UK NCSC Raises Alarms Over Prompt Injection Attacks

News

Gartner Calls For Pause on AI Browser Use

News

New Shai-Hulud Worm Spells Trouble For npm Users

News

Gartner: 40% of Firms to Be Hit By Shadow AI Security Incidents

News

UK Government Finally Introduces Cyber Security and Resilience Bill

News

The UK government is overhauling cybersecurity laws for the first time since 2018 with the Cyber Security and Resilience Bill

NCSC Set to Retire Web Check and Mail Check Tools

News

Multi-Turn Attacks Expose Weaknesses in Open-Weight LLM Models

News

White Papers

Adapting to Tomorrow's Threat Landscape: AI's Role in Cybersecurity Operations in 2024

White Paper

Pipedream Chernovite's emerging malware targeting Industrial Control Systems

White Paper

What Is Data Classification And What Can It Do For My Business?

White Paper

On-Demand Webinars

  • Safeguarding Critical Supply Chain Data Through Effective Risk Assessment
  • Adapting Your Data Security Strategy to the Latest Cyber Threats
  • The Infosecurity Magazine End of Year Xmas Quiz (Feat. The Beer Farmers)
  • Learn How to Reduce Business Costs with Ransomware Readiness
  • How a Threat Response Unit Unmasks a Hacker
  • Leveraging Endpoint Security to Navigate the Modern Threat Landscape
  • Updating Your Active Directory Security to the Modern Threat Environment
  • How to Prepare Your Organization’s Response to the Next Cyber Incident
  • Crowdsourced Intelligence: Working Together to Tackle Phishing
  • Thwarting Insider Threats with IAM and Log Forensics

Podcasts

  • Beth Maundrill and James Coker analyze Insider Threats as September is National Insider Threats Awareness Month.

More news and features

BSI Warns of Looming AI Governance Crisis

News

Security Teams Must Deploy Anti-Infostealer Defenses Now

News

Whisper 2FA Behind One Million Phishing Attempts Since July

News

Whisper 2FA is now one of the most active PhaaS tools alongside Tycoon and EvilProxy, responsible for one million attacks since July 2025

UK Firms Lose Average of £2.9m to AI Risk

News

Free VPN Apps Found Riddled With Security Flaws

News

Gemini Trifecta Highlights Dangers of Indirect Prompt Injection

News

Tenable researchers have discovered three vulnerabilities in Google’s Gemini GenAI tool

Why Shadow AI Is the Next Big Governance Challenge for CISOs

News Feature

Shadow AI is on the rise and security leaders must develop strategies to mitigate this risk while ensuring employees can enjoy the innovative benefits these tools have to offer

The Costs of Toxic Data – And How to Avoid Them

Opinion

Azure AD Credentials Exposed in Public App Settings File

News

UK NCSC Supports Public Disclosure for AI Safeguard Bypass Threats

News

Blogs

The Budget Effect of a Security Incident

Blog

Energy Operations: Managing Password Security and Continuity

Blog

Next-Gen Infosec

How to Prevent Data Leakages

Next-Gen

Top Cloud Misconceptions that Could Damage Your Organization

Next-Gen

Improve Asset Visibility in OT Security With Hybrid AI-Cloud Approaches

Next-Gen