Infosecurity Magazine

Vulnerability Management News

Scroll down for the latest news and information covering vulnerability management.

Latest News and Features

Critical Vulnerability in Ninja Forms Exposes WordPress Sites

News

Claude Discovers Apache ActiveMQ Bug Hidden for 13 Years

News

Anthropic’s Claude AI has helped researchers find a vulnerability in Apache ActiveMQ Classic

GPU Rowhammer Attack Enables Privilege Escalation and Full System Compromise

News

When the World Splits: Are Businesses Really Ready?

Opinion

Geopolitical rifts are becoming more frequent, more complex and more interconnected. Businesses cannot control global politics, but they can control their preparedness

How Security Leaders Can Safeguard Against Vibe Coding Security Risks

News Feature

Apple Expands iOS 18 Security Updates Amid DarkSword Threat

News

NCSC Urges Immediate Patching of F5 BIG-IP Bug

News

Critical Citrix NetScaler Vulnerability Exploited in the Wild

News

Security Researchers Sound the Alarm on Vulnerabilities in AI-Generated Code

News

Security researchers from Georgia Tech have observed a surge in reported CVEs for which the flaw was introduced by AI-generated code

Attackers Rapidly Weaponize Critical Oracle WebLogic RCE, Honeypot Study Finds

News

White Papers

Gcore Radar: DDoS Attack Trends Q3 to Q4, 2023

White Paper

5 Ways to Strengthen Your Active Directory Password Policy

White Paper

SASE Security Buyers Guide

White Paper

On-Demand Webinars

  • How To Enhance Security Operations with AI-Powered Defenses
  • How to Implement Attack Surface Management in the AI and Cloud Age
  • Navigating Exposures in Energy ICS Environments
  • How to Proactively Remediate Rising Web Application Threats
  • How to Optimize Third-Party Risk Management Programs Through NIST CSF 2.0
  • Experiencing a DDoS Simulation to Enhance Defenses
  • How Can the Boardroom Boost Cyber Resilience?

Podcasts

  • Exclusive Interview with OpenClaw's Security Advisor
  • How 2025 Shaped the Future of Cybersecurity
  • Can AI Solve the Vulnerability Problem in Critical Infrastructure?
  • The Team are Joined by Cybersecurity Experts to Review 2022 and How to Prepare Information Security for 2023
  • Beth Maundrill is joined by Dr. Jason Nurse, Associate Professor in Cyber Security at the University of Kent.
  • Beth Maundrill and James Coker analyze Insider Threats as September is National Insider Threats Awareness Month.
  • Into Security Podcast - Episode 15

More news and features

TeamPCP Expands Supply Chain Campaign With LiteLLM PyPI Compromise

News

Citrix Urges Immediate Patching for Critical NetScaler Vulnerabilities

News

High-Tech Sector Overtakes Finance as Top Target for Cyber-Attacks, Mandiant Reports

News

Trivy Supply Chain Attack Expands With New Compromised Docker Images

News

New Trivy Docker images 0.69.5 and 0.69.6 compromised with TeamPCP infostealer, impacting CI/CD scans

Hackers Exploit Critical Langflow Bug in Just 20 Hours

News

Ransomware Affiliate Exposes Details of 'The Gentlemen' Operation

News

New Ubuntu Flaw Enables Local Attackers to Gain Root Access

News

CVE-2026-3888 Ubuntu snap flaw lets local users escalate to root via timing-based exploit

CrackArmor Flaws Expose Linux Systems to Privilege Escalation

News

Security Flaw in AWS Bedrock Code Interpreter Raises Alarms

News

DNS-based attack in AWS Bedrock AgentCore lets AI sandboxes exfiltrate cloud data

UK: Companies House Web Glitch Exposes Corporate Details to Fraudsters

News

Blogs

Microsoft 365 Tenant Security: How to Stay in Control of Your Data

Blog

The Death of the SIEM: Why Modern Security Demands a New Data Strategy

Blog

Next-Gen Infosec

How to Prevent Data Leakages

Next-Gen

Top Cloud Misconceptions that Could Damage Your Organization

Next-Gen

Improve Asset Visibility in OT Security With Hybrid AI-Cloud Approaches

Next-Gen