Attackers could exploit the flaw to steal information from the databases of websites running vBulletin 5
Specially crafted HTTP requests could trigger remote code execution on the affected devices, Cisco said
Researchers launch effort to track SSL certificates used in botnet and malware operations
NIST needs to improve its cryptographic expertise in order to challenge advice received from the NSA when developing standards, report says
Its creators seek to establish the new threat as a premium commercial alternative to older Trojans like Zeus
Windows XP users will continues to receive Java 7 security updates until at least April 2015, Oracle says
A security breach at India's National Informatics Centre resulted in at least 45 rogue digital certificates for Google and Yahoo domains
Researchers from TrapX discovered a sophisticated multistage cyberespionage attack that started in the supply chain
The full scope of the security breach is currently unknown, a Google security engineer said
Police in eight countries worked with security vendors to seize domain names and servers used by the Trojan program
A new malware threat scans the Internet for POS systems and tries to access them using common usernames and passwords
Bad design decisions could have enabled malware infections, researchers from CERT/CC said.
The flaw affects the majority of Android devices in use and could easily be exploited by malware to make premium-rate calls.
A rogue iframe injected into the site led visitors to exploits that installed a click-fraud Trojan program, researchers from Symantec said
The two vulnerabilities affect Rails applications that use PostgreSQL as a database system