Penetration Testing News

Scroll down for the latest penetration testing news and information.

Browse other Physical and Information Security Convergence topics

Don’t Miss Out!

Subscribe to our weekly newsletter for the latest in industry news, expert insights, dedicated information security content and online events.

SQL Injection Flaw Affects 40,000 WordPress Sites

News3 February 2026

40,000 WordPress sites are vulnerable to SQL injection in Quiz and Survey Master plugin

DockerDash Exposes AI Supply Chain Weakness In Docker's Ask Gordon

News3 February 2026

DockerDash vulnerability allows RCE and data exfiltration via unverified metadata in Ask Gordon

Over 80% of Ethical Hackers Now Use AI

News27 January 2026

RealHomes CRM Plugin Flaw Affected 30,000 WordPress Sites

News22 January 2026

Motors WordPress Vulnerability Exposes Sites to Takeover

News17 December 2025

OpenAI Enhances Defensive Models to Mitigate Cyber-Threats

News11 December 2025

Multi-Turn Attacks Expose Weaknesses in Open-Weight LLM Models

News6 November 2025

Threat Actors Utilize AdaptixC2 for Malicious Payload Delivery

News30 October 2025

Flaw in Slider Revolution Plugin Exposed 4m WordPress Sites

News15 October 2025

A flaw in the Slider Revolution plugin has exposed millions of WordPress sites to unauthorized file access

Broadcom Issues Patches for VMware NSX and vCenter Security Flaws

News1 October 2025

Don’t miss out!

Subscribe to our weekly newsletter for the latest in industry news, expert insights, dedicated information security content and online events.

White Papers

State of Cybersecurity Report 2022

White Paper26 May 2022

Red Teaming: How to Identify Gaps in Your Security Strategy by Thinking Like the Enemy

White Paper9 January 2019

Pen Test Metrics 2018

White Paper27 July 2018

What’s Hot on Infosecurity Magazine?

New Hacking Campaign Exploits Microsoft Windows WinRAR Vulnerability

News5 February 2026

Hundreds of Malicious Crypto Trading Add-Ons Found in Moltbot/OpenClaw

News3 February 2026

Two Critical Flaws in n8n AI Workflow Automation Platform Allow Complete Takeover

News4 February 2026

Smartphones Now Involved in Nearly Every Police Investigation

News5 February 2026

AI Drives Doubling of Phishing Attacks in a Year

News4 February 2026

SolarWinds Web Help Desk Vulnerability Actively Exploited

News4 February 2026

NSA Publishes New Zero Trust Implementation Guidelines

News2 February 2026

Cybersecurity M&A Roundup: CrowdStrike and Palo Alto Networks Lead Investment in AI Security

News Feature2 February 2026

Data Privacy Day: Why AI’s Rise Makes Protecting Personal Data More Critical Than Ever

News Feature28 January 2026

Over 80% of Ethical Hackers Now Use AI

News27 January 2026

New CISA Guidance Targets Insider Threat Risks

News29 January 2026

Number of Cybersecurity Pros Surges 194% in Four Years

News29 January 2026

Securing M365 Data and Identity Systems Against Modern Adversaries

Webinar15:00 — 16:00, 22 January 2026

Five Non-Negotiable Strategies to Get Identity Security Right in 2026

Webinar18:00 — 18:30, 22 January 2026

How to Implement Attack Surface Management in the AI and Cloud Age

Webinar15:00 — 16:00, 3 April 2025

Cyber Resilience in the AI Era: New Challenges and Opportunities

Webinar15:00 — 16:00, 25 March 2025

Safeguarding Critical Supply Chain Data Through Effective Risk Assessment

Webinar15:00 — 16:00, 10 April 2025

Dispelling the Myths of Defense-Grade Cybersecurity

Webinar11:00 — 12:00, 4 December 2024

Regulating AI: Where Should the Line Be Drawn?

Opinion12 November 2025

What Is Vibe Coding? Collins’ Word of the Year Spotlights AI’s Role and Risks in Software

News Feature11 November 2025

Risk-Based IT Compliance: The Case for Business-Driven Cyber Risk Quantification

Webinar15:00 — 16:00, 23 October 2025

Bridging the Divide: Actionable Strategies to Secure Your SaaS Environments

Blog7 November 2025

NCSC Set to Retire Web Check and Mail Check Tools

News10 November 2025

Beyond Bug Bounties: How Private Researchers Are Taking Down Ransomware Operations

Podcast4 November 2025

Podcasts

Critical Vulnerability in Salesforce AgentForce Exposed

News25 September 2025

Critical CVEs in Chaos-Mesh Enable In-Cluster Code Execution

News17 September 2025

Chinese AI Villager Pen Testing Tool Hits 11,000 PyPI Downloads

News16 September 2025

Malicious VS Code Extensions Exploit Name Reuse Loophole

News28 August 2025

Visual Studio Code extensions have been identified exploiting a loophole that allows reuse of names from removed packages

US and Five Global Partners Release First Unified OT Security Taxonomy

News15 August 2025

#BHUSA: 1000 DoD Contractors Now Covered by NSA’s Free Cyber Services Program

News7 August 2025

The NSA’s CAPT program, launched in 2024 with Horizon3.ai, now benefits 1000 of the 300,000 US Defense Industrial Base companies

Pwn2Own Offers $1m for Zero-Click WhatsApp Exploit

News4 August 2025

The Pwn2Own competition is offering a $1m reward to any teams able to unearth a WhatsApp code execution exploit

Critical Flaws in WordPress Plugin Leave 10,000 Sites Vulnerable

News28 July 2025

Grok-4 Jailbroken Two Days After Release Using Combined Attack

News14 July 2025

Red Team Tool Developer Shellter Admits ‘Misuse’ by Adversaries

News8 July 2025

Infosecurity Magazine

Penetration Testing News

Browse other Physical and Information Security Convergence topics

Don’t Miss Out!

Latest News and Features

Don’t miss out!

White Papers

What’s Hot on Infosecurity Magazine?

Podcasts

More news and features

Blogs

Next-Gen Infosec