Infosecurity Magazine

Security Policy News

Scroll down for all the latest news and information covering security policy.

Latest News and Features

ISACA Named Global Credentialing Authority for DoD’s CMMC Program

News

Top 25 Most Dangerous Software Weaknesses of 2025 Revealed

News

MITRE has released its Top 25 CWE list for 2025, compiled from software and hardware flaws behind almost 40,000 CVEs

NCSC Playbook Embeds Cyber Essentials in Supply Chains

News

The UK’s National Cyber Security Centre has called on businesses to apply Cyber Essentials to suppliers

Hired to Hack: Protecting Your Business from Remote Recruitment Scams

Opinion

OpenAI Enhances Defensive Models to Mitigate Cyber-Threats

News

Gartner Calls For Pause on AI Browser Use

News

Portugal Revises Cybercrime Law to Protect Security Researchers

News

CISA and International Partners Issue Guidance for Secure AI in Infrastructure

News

Cyber Agencies Push for Digital Trust Amid AI Era with New Provenance Report

News

UK’s NCSC and Canada’s CCCS release a joint report on content provenance, urging organizations to strengthen digital trust and combat AI-driven misinformation

Pall Mall Process to Define Responsible Commercial Cyber Intrusion

News

White Papers

5 Ways to Strengthen Your Active Directory Password Policy

White Paper

The State of Security: Finance

White Paper

How to Plan a Server Hardening Project Using CIS Benchmarks

White Paper

On-Demand Webinars

  • Mastering Emerging Regulations: DORA, NIS2 and AI Act Compliance
  • Enhancing Software Supply Chain Management: A DORA-Focused Approach
  • Auditing AI Risk: Essential Strategies for IT & Compliance Leaders
  • Alert Fatigue: What Are You and Your Security Teams Missing?
  • Mastering Australian Privacy Act and Essential Eight While Improving Cybersecurity Posture
  • Identifying Concentration Risk and Securing the Supply Chain
  • The Next Frontier for Data Security: Insights from Safeguarding Fortune 500 Data Transfers
  • Combating InfoSec Compliance Fatigue: Pain Points and Best Practices
  • The Infosecurity Magazine End of Year Xmas Quiz (Feat. The Beer Farmers)
  • How a Threat Response Unit Unmasks a Hacker

Podcasts

  • Unpacking Trump's Cybersecurity Executive Order
  • The impact and challenges of the General Data Protection Regulation (GDPR).
  • Into Security Podcast - Episode 19
  • Into Security Podcast - Episode 2

More news and features

Passwords, MFA and AD Accounts: Hardening Your Environment for NIS2 Compliance

Blog

Key Provisions of the UK Cyber Resilience Bill Revealed

News

UK Report Proposes Liability For Software Provider Insecurity

News

Mounting Cyber-Threats Prompt Calls For Economic Security Bill

News

MPs in the UK want a new economic security regime to tackle cyber and related threats

Gartner: 40% of Firms to Be Hit By Shadow AI Security Incidents

News

Ensuring Backup Compliance with SOC 2 and ISO 27001

Blog

CISA 2015 Receives Extension, Offering Brief Relief for Cyber Information Sharing

News

One US cybersecurity leader described the short-term extension of the Cybersecurity Information Sharing Act as a “temporary patch” and called for a long-term solution

65% of Leading AI Companies Found With Verified Secrets Leaks

News

A new study has revealed 65% of top AI firms have leaked sensitive data on GitHub, risking $400bn in assets

Identity Is Now the Top Source of Cloud Risk

News

CISA and NSA Outline Best Practices to Secure Exchange Servers

News

Blogs

The Budget Effect of a Security Incident

Blog

Energy Operations: Managing Password Security and Continuity

Blog

Next-Gen Infosec

How to Prevent Data Leakages

Next-Gen

Top Cloud Misconceptions that Could Damage Your Organization

Next-Gen

Improve Asset Visibility in OT Security With Hybrid AI-Cloud Approaches

Next-Gen