Legislation and Standards News

Scroll down for the latest news and information covering legislation and standards.

Browse other Compliance topics

Don’t Miss Out!

Subscribe to our weekly newsletter for the latest in industry news, expert insights, dedicated information security content and online events.

UK: NHS Supplier Confirms Cyber-Attack, Operations Unaffected

News22 December 2025

ISACA Named Global Credentialing Authority for DoD’s CMMC Program

News17 December 2025

ISACA has been appointed by the US DoD as the global credentialing authority for its CMMC program

Third Defendant Pleads Guilty in Fantasy Sports Betting Hack Case

News15 December 2025

A Minnesota man has pleaded guilty to a credential stuffing scheme that compromised over 60,000 accounts

NCSC Playbook Embeds Cyber Essentials in Supply Chains

News15 December 2025

ICO Fines LastPass £1.2m After 2022 Breach

News12 December 2025

Pro-Russia Hackers Target US Critical Infrastructure in New Wave

News10 December 2025

Pro-Russia hacktivist groups have been observed exploiting exposed virtual network computing connections to breach OT systems

UK ICO Demands “Urgent Clarity” on Facial Recognition Bias Claims

News8 December 2025

CISA and International Partners Issue Guidance for Secure AI in Infrastructure

News4 December 2025

Post Office Escapes £1m Fine After Postmaster Data Breach

News4 December 2025

UK Ransomware Payment Ban to Come with Exemptions, Security Minster Say

News3 December 2025

Don’t miss out!

Subscribe to our weekly newsletter for the latest in industry news, expert insights, dedicated information security content and online events.

White Papers

The Digital Operational Resilience Act (DORA): A Comprehensive Guide to TPRM Compliance

White Paper22 October 2024

Maintaining a Fit-For-Purpose Cybersecurity Strategy: How to Comply with Australian Privacy Act Changes, Increase Alignment with Essential Eight

White Paper16 October 2024

Gcore Radar: DDoS Attack Trends Q3 to Q4, 2023

White Paper20 March 2024

On-Demand Webinars

What’s Hot on Infosecurity Magazine?

Top 10 Cyber-Attacks of 2025

News Feature16 December 2025

Phobos Ransomware Family Expands With New FAUST Variant

News29 January 2024

Wishbone Breach: 40 Million Records Leaked on Dark Web

News22 May 2020

Monitoring Tool Nezha Abused For Stealthy Post-Exploitation Access

News22 December 2025

UK: NHS Supplier Confirms Cyber-Attack, Operations Unaffected

News22 December 2025

Nefilim Ransomware Affiliate Pleads Guilty

News22 December 2025

New BeaverTail Malware Variant Linked to Lazarus Group

News18 December 2025

Critical PickleScan Vulnerabilities Expose AI Model Supply Chains

News2 December 2025

Helldown Ransomware Expands to Target VMware and Linux Systems

News19 November 2024

Urban VPN Proxy Accused of Harvesting AI Chat Conversations

News16 December 2025

OAuth Device Code Phishing Campaigns Surge Targets Microsoft 365

News18 December 2025

Phishing Messages and Social Scams Flood Users Ahead of Christmas

News16 December 2025

Revisiting CIA: Developing Your Security Strategy in the SaaS Shared Reality

Webinar15:00 — 16:00, 11 December 2025

Exposing AI’s Blind Spots: Security vs Safety in the Age of Gen AI

Webinar12:30 — 13:30, 13 November 2025

Risk-Based IT Compliance: The Case for Business-Driven Cyber Risk Quantification

Webinar15:00 — 16:00, 23 October 2025

Cyber Defense in the Age of AI: Stay Ahead of Threats Without Compromising Safety

Webinar15:00 — 16:00, 24 July 2025

How Mid-Market Businesses Can Leverage Microsoft Security for Proactive Defenses

Webinar15:00 — 16:00, 6 November 2025

Predicting and Prioritizing Cyber Attacks Using Threat Intelligence

Webinar15:00 — 16:00, 26 June 2025

Regulating AI: Where Should the Line Be Drawn?

Opinion12 November 2025

What Is Vibe Coding? Collins’ Word of the Year Spotlights AI’s Role and Risks in Software

News Feature11 November 2025

Risk-Based IT Compliance: The Case for Business-Driven Cyber Risk Quantification

Webinar15:00 — 16:00, 23 October 2025

Bridging the Divide: Actionable Strategies to Secure Your SaaS Environments

Blog7 November 2025

NCSC Set to Retire Web Check and Mail Check Tools

News10 November 2025

Beyond Bug Bounties: How Private Researchers Are Taking Down Ransomware Operations

Podcast4 November 2025

Podcasts

Pall Mall Process to Define Responsible Commercial Cyber Intrusion

News3 December 2025

The Pall Mall Process begins outreach to define guidelines for private commercial intrusion industry

ICO Set to Check If Mobile Games Comply with Children’s Code

News2 December 2025

UK Report Proposes Liability For Software Provider Insecurity

News26 November 2025

Mounting Cyber-Threats Prompt Calls For Economic Security Bill

News25 November 2025

CISA Issues New Guidance on Bulletproof Hosting Threat

News20 November 2025

UK, US and Australia Sanction Russian Bulletproof Hoster Media Land

News20 November 2025

Ensuring Backup Compliance with SOC 2 and ISO 27001

Blog20 November 2025

Learn how to make your backups fully compliant with SOC 2 Criteria and ISO 27001 Controls and pass an audit or certification

Europol Operation Disrupts $55m in Cryptocurrency For Piracy

News19 November 2025

Europe-wide Cyber-Patrol Week targeted IP violations, flagging 69 sites and disrupting $55m in crypto services

CISA 2015 Receives Extension, Offering Brief Relief for Cyber Information Sharing

News18 November 2025

Google Files Lawsuit to Dismantle 'Lighthouse' Smishing Kit

News14 November 2025

Blogs

The Budget Effect of a Security Incident

Blog15 December 2025

Energy Operations: Managing Password Security and Continuity

Blog9 December 2025

Next-Gen Infosec

How to Prevent Data Leakages

Next-Gen11 August 2023

Top Cloud Misconceptions that Could Damage Your Organization

Next-Gen4 August 2023

Improve Asset Visibility in OT Security With Hybrid AI-Cloud Approaches

Next-Gen21 July 2023