Infosecurity Magazine

Vulnerability Management News

Scroll down for the latest news and information covering vulnerability management.

Latest news and features

Over 850 Vulnerable Devices Secured Through CISA Ransomware Program

News

CISA’s RVWP program sent 1754 ransomware vulnerability notifications to government and critical infrastructure entities in 2023, leading to 852 devices being secured

State-Sponsored Espionage Campaign Exploits Cisco Vulnerabilities

News

BEC and Fund Transfer Fraud Top Insurance Claims

News

Email-borne fraud accounted for more insurance claims than any other category in 2023, says Coalition

Vulnerability Exploitation on the Rise as Attackers Ditch Phishing

News

Russian APT28 Group in New “GooseEgg” Hacking Campaign

News

Dependency Confusion Vulnerability Found in Apache Project

News

CrushFTP File Transfer Vulnerability Lets Attackers Download System Files

News

MITRE Reveals Ivanti Breach By Nation State Actor

News

How to Navigate the Risks of Generative AI

Opinion

KPMG's Matthew Roach says a holistic approach is needed to ensure the safe and responsible use of generative AI

Linux Cerber Ransomware Variant Exploits Atlassian Servers

News

Webinars coming up

Uncovering DDoS Vulnerabilities with Simulation Testing: A Case Study

How to Optimize Third-Party Risk Management Programs Through NIST CSF 2.0

White papers

Gcore Radar: DDoS Attack Trends Q3 to Q4, 2023

White Paper

5 Ways to Strengthen Your Active Directory Password Policy

White Paper

SASE Security Buyers Guide

White Paper

On-demand webinars

Podcasts

More news and features

US Government and OpenSSF Partner on New SBOM Management Tool

News

Ivanti Patches Two Critical Avalanche Flaws in Major Update

News

LeakyCLI Flaw Exposes AWS and Google Cloud Credentials

News

Cybersecurity Pros Urge US Congress to Help NIST Restore NVD Operation

News

An open letter signed by 50 cybersecurity practitioners requires the US Congress to support NIST in restoring operations at the National Vulnerability Database

Palo Alto Networks Zero-Day Flaw Exploited in Targeted Attacks

News

Palo Alto Networks Warns About Critical Zero-Day in PAN-OS

News

A fix for CVE-2024-3400 is scheduled on April 4, Palo Alto Networks announced

LG TV Vulnerabilities Expose 91,000 Devices

News

Microsoft Patches 150 Flaws Including Two Zero-Days

News

April’s Patch Tuesday saw fixes for 150 CVEs, including two being actively exploited in the wild

Half of UK Businesses Hit by Cyber-Incident in Past Year, UK Government Finds

News

Hackers Use Malware to Hunt Software Vulnerabilities

News

Events coming up

Infosecurity Europe 2024

Event

Next-gen infosec

How to Prevent Data Leakages

Next-Gen

Top Cloud Misconceptions that Could Damage Your Organization

Next-Gen

Improve Asset Visibility in OT Security With Hybrid AI-Cloud Approaches

Next-Gen