NIST needs to improve its cryptographic expertise in order to challenge advice received from the NSA when developing standards, report says
Its creators seek to establish the new threat as a premium commercial alternative to older Trojans like Zeus
Windows XP users will continues to receive Java 7 security updates until at least April 2015, Oracle says
A security breach at India's National Informatics Centre resulted in at least 45 rogue digital certificates for Google and Yahoo domains
Researchers from TrapX discovered a sophisticated multistage cyberespionage attack that started in the supply chain
The full scope of the security breach is currently unknown, a Google security engineer said
Police in eight countries worked with security vendors to seize domain names and servers used by the Trojan program
A new malware threat scans the Internet for POS systems and tries to access them using common usernames and passwords
Bad design decisions could have enabled malware infections, researchers from CERT/CC said.
The flaw affects the majority of Android devices in use and could easily be exploited by malware to make premium-rate calls.
A rogue iframe injected into the site led visitors to exploits that installed a click-fraud Trojan program, researchers from Symantec said
The two vulnerabilities affect Rails applications that use PostgreSQL as a database system
Cisco released new software versions to fix the issue and patch another serious vulnerability
Attackers could exploit a flaw in the MailPoet Newsletters plug-in to take full control of vulnerable blogs, researchers from Sucuri said
The company claims its product reduces cyber incident response times by up to 95 percent