Secure Coding News

Scroll down for all the latest news and information on secure coding.

Browse other Application Security topics

Don’t Miss Out!

Subscribe to our weekly newsletter for the latest in industry news, expert insights, dedicated information security content and online events.

SQL Injection Flaw Affects 40,000 WordPress Sites

News3 February 2026

Vibe-Coded Moltbook Exposes User Data, API Keys and More

News3 February 2026

Autonomous System Uncovers Long-Standing OpenSSL Flaws

News28 January 2026

Critical and High Severity n8n Sandbox Flaws Allow RCE

News28 January 2026

Two critical security flaws in n8n have exposed sandboxing vulnerabilities, enabling remote code execution for attackers

Researchers Uncover 454,000+ Malicious Open Source Packages

News28 January 2026

Sonatype warns that open source threats became industrialized with a surge in malicious packages in 2025

Pyodide Sandbox Escape Enables Remote Code Execution in Grist-Core

News27 January 2026

PeckBirdy Framework Tied to China-Aligned Cyber Campaigns

News27 January 2026

CISA Releases List of Post-Quantum Cryptography Product Categories

News26 January 2026

CISA released initial list of PQC-capable hardware and software to guide companies amid quantum threats

Critical Appsmith Flaw Enables Account Takeovers

News22 January 2026

RealHomes CRM Plugin Flaw Affected 30,000 WordPress Sites

News22 January 2026

Don’t miss out!

Subscribe to our weekly newsletter for the latest in industry news, expert insights, dedicated information security content and online events.

White Papers

Gcore Radar: DDoS Attack Trends Q3 to Q4, 2023

White Paper20 March 2024

Secure Coding Culture Playbook

White Paper9 December 2022

Web Application Security for Pharma and Healthcare

White Paper30 June 2022

On-Demand Webinars

What’s Hot on Infosecurity Magazine?

New Hacking Campaign Exploits Microsoft Windows WinRAR Vulnerability

News5 February 2026

Hundreds of Malicious Crypto Trading Add-Ons Found in Moltbot/OpenClaw

News3 February 2026

Two Critical Flaws in n8n AI Workflow Automation Platform Allow Complete Takeover

News4 February 2026

Smartphones Now Involved in Nearly Every Police Investigation

News5 February 2026

AI Drives Doubling of Phishing Attacks in a Year

News4 February 2026

SolarWinds Web Help Desk Vulnerability Actively Exploited

News4 February 2026

NSA Publishes New Zero Trust Implementation Guidelines

News2 February 2026

Cybersecurity M&A Roundup: CrowdStrike and Palo Alto Networks Lead Investment in AI Security

News Feature2 February 2026

Data Privacy Day: Why AI’s Rise Makes Protecting Personal Data More Critical Than Ever

News Feature28 January 2026

Over 80% of Ethical Hackers Now Use AI

News27 January 2026

New CISA Guidance Targets Insider Threat Risks

News29 January 2026

Number of Cybersecurity Pros Surges 194% in Four Years

News29 January 2026

Securing M365 Data and Identity Systems Against Modern Adversaries

Webinar15:00 — 16:00, 22 January 2026

Five Non-Negotiable Strategies to Get Identity Security Right in 2026

Webinar18:00 — 18:30, 22 January 2026

How to Implement Attack Surface Management in the AI and Cloud Age

Webinar15:00 — 16:00, 3 April 2025

Cyber Resilience in the AI Era: New Challenges and Opportunities

Webinar15:00 — 16:00, 25 March 2025

Safeguarding Critical Supply Chain Data Through Effective Risk Assessment

Webinar15:00 — 16:00, 10 April 2025

Dispelling the Myths of Defense-Grade Cybersecurity

Webinar11:00 — 12:00, 4 December 2024

Regulating AI: Where Should the Line Be Drawn?

Opinion12 November 2025

What Is Vibe Coding? Collins’ Word of the Year Spotlights AI’s Role and Risks in Software

News Feature11 November 2025

Risk-Based IT Compliance: The Case for Business-Driven Cyber Risk Quantification

Webinar15:00 — 16:00, 23 October 2025

Bridging the Divide: Actionable Strategies to Secure Your SaaS Environments

Blog7 November 2025

NCSC Set to Retire Web Check and Mail Check Tools

News10 November 2025

Beyond Bug Bounties: How Private Researchers Are Taking Down Ransomware Operations

Podcast4 November 2025

Podcasts

Zero-Day Exploits Surge, Nearly 30% of Flaws Attacked Before Disclosure

News22 January 2026

Prompt Injection Bugs Found in Official Anthropic Git MCP Server

News20 January 2026

Researchers Exploit Bug in StealC Infostealer to Collect Evidence

News19 January 2026

CyberArk says it exploited a vulnerability in the StealC infostealer to gather intelligence

Global Agencies Release New Guidance to Secure Industrial Networks

News15 January 2026

CodeBuild Flaw Put AWS Console Supply Chain At Risk

News15 January 2026

DeadLock Ransomware Uses Polygon Smart Contracts For Proxy Rotation

News14 January 2026

CISA Flags Actively Exploited Gogs Vulnerability With No Patch

News13 January 2026

Global Magecart Campaign Targets Six Card Networks

News13 January 2026

Palo Alto Networks Introduces New Vibe Coding Security Governance Framework

News12 January 2026

Researchers at Palo Alto’s Unit 42 have outlined a list of recommended security controls for vibe coding tools

New Zero-Click Attack Lets ChatGPT User Steal Data

News8 January 2026

Researchers at Radware discovered new prompt injection attacks in ChatGPT agentic features

Blogs

Five Single Sign-On Best Practices to Reduce Access Risk in 2026

Blog3 February 2026

Zero Trust and Active Directory: What Modern AD Audits Reveal

Blog19 January 2026

Next-Gen Infosec

How to Prevent Data Leakages

Next-Gen11 August 2023

Top Cloud Misconceptions that Could Damage Your Organization

Next-Gen4 August 2023

Improve Asset Visibility in OT Security With Hybrid AI-Cloud Approaches

Next-Gen21 July 2023