Microsoft has fixed 39 vulnerabilities in multiple Windows components, Internet Explorer, Edge, Office and .NET Framework, many of which allow for remote code execution.
Google has published an interactive questionnaire that companies could use to assess the security posture of vendors they choose to work with or to review and improve their own security programs.
Generic top-level domains (TLDs) that have sprung up in recent years have become a magnet for cybercriminals, to the point where some of them host more malicious domains than legitimate ones.
Romania's highest court approved the temporary extradition to the U.S. of a convicted hacker who is accused of breaking into the email and social media accounts of a Bush family member and U.S. government officials.
Ransomware has become a real scourge for consumers, businesses and even government institutions. Unfortunately, there's no end in sight, so here's what you should know.
The Cerber ransomware is sold as a service to cybercriminals and contains an audio message for victims, researchers find.
Cisco Systems has released software updates for its Nexus 3000 and 3500 switches in order to remove a default administrative account with static credentials that could allow remote attackers to compromise devices.
For the third time in under a year, security researchers have found a method to attack encrypted Web communications, a direct result of weaknesses that were mandated two decades ago by the U.S. government.
Adi Shamir, co-creator of the widely used RSA cryptographic algorithm, believes that Apple should have assisted the FBI in decrypting the iPhone of one of the San Bernardino shooters and choose to resist in a future situation.
Security researchers have discovered a new weakness that could allow attackers to spy on encrypted communications between users and a third of all HTTPS servers.
A new malicious program that encrypts files on Web servers has affected at least 100 websites over the past few weeks, signaling a new trend in ransomware development.
A team of security researchers found serious vulnerabilities in over a dozen wireless routers and access points from Netgear and D-Link with the help of an open-source framework that can be used to perform dynamic security analysis on embedded firmware.
The Mutually Agreed Norms for Routing Security (MANRS), an initiative backed by the Internet Society to fix routing security on the Internet, is gaining some traction, but the number of attacks that take advantage of weaknesses in the global routing system are also growing.
Microsoft is adding a range of new security features to its Office 365 and Azure cloud services as part of the company's holistic approach to enterprise security that it announced last year.
Mozilla will allow Symantec to issue nine new SHA-1-signed certificates to Worldpay in order to accommodate over 10,000 payment terminals that haven't been upgraded before the issuing of such certificates was banned.