Infosecurity Magazine

Vulnerability Management News

Scroll down for the latest news and information covering vulnerability management.

Latest News and Features

Top 25 Most Dangerous Software Weaknesses of 2025 Revealed

News

OpenAI Enhances Defensive Models to Mitigate Cyber-Threats

News

Malware Discovered in 19 Visual Studio Code Extensions

News

Google Releases Critical Chrome Security Update to Address Three Zero-Days

News

Google has released a Chrome security update to fix three zero-day vulnerabilities, including a high-severity flaw with an active exploit

“Cyber Tax” Warning as Two-Fifths of SMBs Raise Prices After Breach

News

New ITRC research finds 81% of US small businesses suffered a data or security breach in the past year

Pro-Russia Hackers Target US Critical Infrastructure in New Wave

News

Google Fixes Zero Click Gemini Enterprise Flaw That Exposed Corporate Data

News

Log4Shell Downloaded 40 Million Times in 2025

News

Microsoft Fixes Three Zero-Days in Final Patch Tuesday of 2025

News

December’s Patch Tuesday sees the release of patches for over 50 CVEs including three zero-days

Malicious VS Code Extensions Deploy Advanced Infostealer

News

White Papers

Gcore Radar: DDoS Attack Trends Q3 to Q4, 2023

White Paper

5 Ways to Strengthen Your Active Directory Password Policy

White Paper

SASE Security Buyers Guide

White Paper

On-Demand Webinars

  • How to Implement Attack Surface Management in the AI and Cloud Age
  • Navigating Exposures in Energy ICS Environments
  • How to Proactively Remediate Rising Web Application Threats
  • How to Optimize Third-Party Risk Management Programs Through NIST CSF 2.0
  • Experiencing a DDoS Simulation to Enhance Defenses
  • How Can the Boardroom Boost Cyber Resilience?
  • Mastering Software Supply Chain Security with Strategic Defense Mechanisms
  • Forward-Thinking Practices to Manage IT Risk
  • Vulnerability Management: Why a Risk-Based Approach is Essential
  • The Infosecurity Magazine End of Year Xmas Quiz (Feat. The Beer Farmers)

Podcasts

  • How 2025 Shaped the Future of Cybersecurity
  • Can AI Solve the Vulnerability Problem in Critical Infrastructure?
  • The Team are Joined by Cybersecurity Experts to Review 2022 and How to Prepare Information Security for 2023
  • Beth Maundrill is joined by Dr. Jason Nurse, Associate Professor in Cyber Security at the University of Kent.
  • Beth Maundrill and James Coker analyze Insider Threats as September is National Insider Threats Awareness Month.
  • Into Security Podcast - Episode 15

More news and features

DeadLock Ransomware Uses BYOVD to Evade Security Measures

News

Marquis Software Breach Affects Over 780,000 Nationwide

News

Barts Health Seeks High Court Ban After Oracle EBS Breach

News

Critical PickleScan Vulnerabilities Expose AI Model Supply Chains

News

3 critical zero-day flaws in PickleScan, affecting Python and PyTorch, allowed undetected attacks

Google Releases Patches for Android Zero-Day Flaws Exploited in the Wild

News

Malware Manipulates AI Detection in Latest npm Package Breach

News

FCC Warns of Hackers Hijacking Radio Equipment For False Alerts

News

UK Report Proposes Liability For Software Provider Insecurity

News

HashJack Indirect Prompt Injection Weaponizes Websites

News

A new vulnerability dubbed “HashJack” could enable attackers to booby trap websites when they interact with AI browsers

Flaws Expose Risks in Fluent Bit Logging Agent

News

Critical flaws in Fluent Bit threaten telemetry across platforms according to an advisory published by Oligo Security researchers

Blogs

The Budget Effect of a Security Incident

Blog

Energy Operations: Managing Password Security and Continuity

Blog

Next-Gen Infosec

How to Prevent Data Leakages

Next-Gen

Top Cloud Misconceptions that Could Damage Your Organization

Next-Gen

Improve Asset Visibility in OT Security With Hybrid AI-Cloud Approaches

Next-Gen