Rewards for bug-hunting security tools could reduce zero-day software flaws
An old flaw in Windows can still be exploited, according to Cylance.
A legal threat could turn into an important test case concerning geoblocked content
APT 30 has been operating since 2005 without significantly changing its attack methods, FireEye said. Its target? "Air-gapped" networks that are supposed to be physically isolated from the Internet.
Security measures put in place after a first breach last year failed to stop hackers from striking again
The company's software applies a strict regime of rules over who can open a file
The plugins are low-hanging fruit, but the attacks have been widespread and disruptive, the FBI said
TrustWave will become a standalone business unit of SingTel and not curtail its services
The group is advising conference attendees to change their passwords
EFF said the GitHub attack reinforces the case for using HTTPS
The government hasn't shown that it is improving its zero-day flaw notification efforts
The DDoS attacks were aimed at two GitHub-hosted projects fighting Chinese censorship.
The SDN project now has a security response team to quickly handle new vulnerability reports
Many websites are not using updated APIs that would prevent Likes from being easily faked
MCS Holdings says it deleted the certificates after it was notified