Business
Cloud
Hardware
Infrastructure
Security
Content hubs
Advertise
More More
- - About About
  - Policies Policies
  - Additional Resources Additional Resources

Trending

Subscribe to the ITPro Newsletter
AWS re:Invent 2025
HPE Discover Europe 2025
Artificial intelligence in business
Reviews and how tos
The ITPro Podcast

When you purchase through links on our site, we may earn an affiliate commission. Here’s how it works.

Vulnerability

Discover expert analysis on vulnerability with news, features and insights from the team at IT Pro.

Defra's legacy software problem 'threatens' UK gov cyber security until 2030

News The department spends over two-thirds of its digital budget on maintaining the risky applications, with no plan in place for a fix within the decade

By Rory Bathgate Published 6 December 22

News
Hyundai vulnerability allowed remote hacking of locks, engine

News Researchers discovered flaws in a number of apps linked to car brands that allowed for personal details and remote control of vehicles using easily-obtained IDs

By Rory Bathgate Published 30 November 22

News

NSA: Phase out memory-unsafe languages like C and C++

News The US agency advises organisations to begin using languages like Rust, Java, and Swift

By Zach Marzouk Published 11 November 22

News
Lenovo patches ThinkPad, Yoga, IdeaPad UEFI secure boot vulnerability

News Mistakenly used drivers could allow hackers to modify the secure boot process

By Rory Bathgate Published 10 November 22

News
GitHub launches private vulnerability reporting to secure the software supply chain

News The new platform aims to simplify vulnerability disclosure and minimise instances where researchers avoid reporting out of personal convenience

By Connor Jones Published 10 November 22

News

OpenSSL 3.0 vulnerability: Patch released for security scare

News The severity has been downgraded from 'critical' to 'high' and comparisons to Heartbleed have been quashed

By Connor Jones Published 1 November 22

News
Major security exploits expected to rise before New Year

News Supply chain attacks are also expected to increase, along with affiliate programmes becoming more popular

By Zach Marzouk Published 1 November 22

News
Second-ever OpenSSL critical vulnerability teased, 10 years after Heartbleed

News All OpenSSL versions beyond 3.0 are at risk, with more details due to be released alongside a patch on 1 November

By Rory Bathgate Published 28 October 22

News

Apple patches actively exploited iPhone, iPad zero-day and 18 other security flaws

News The out-of-bounds write error is the eighth actively exploited zero-day impacting Apple hardware this year and could facilitate kernel-level code execution

By Rory Bathgate Published 25 October 22

News
Undetectable PowerShell backdoor discovered hiding as Windows update

News SafeBreach researchers identified the backdoor, which they say went undetected on all major antivirus programs

By Rory Bathgate Published 19 October 22

News
Office 365's encryption feature can be easily hacked, warns WithSecure

News Researchers advise enterprises to move away from Office 365 Message Encryption, claiming its messages can be decrypted without a key

By Rory Bathgate Published 19 October 22

News

Fortinet reiterates call to mitigate against active zero-day, as customers delay fixes

News A large number of customers have yet to apply mitigations necessary to avoid the critical vulnerability

By Rory Bathgate Published 18 October 22

News

1 2 3 4 5 6 7 8 9 Archives

IT Pro is part of Future plc, an international media group and leading digital publisher. Visit our corporate site.

Add as a preferred source on Google

Connect With Us

Contact Future's experts
About us
Contact us
Terms and conditions
Privacy policy
Web notifications
Cookies policy
Newsletters
GDRP consent
Careers
Contact Future's B2B experts

© Future Publishing Limited Quay House, The Ambury, Bath BA1 1UA. All rights reserved. England and Wales company registration number 2008885.