Hackers can exploit the vulnerability to launch man-in-the-middle attacks and decrypt traffic from the affected apps.
The security industry is not doing enough and it's going to get worse, they said
A flaw in the widely used wpa_supplicant wireless client can lead remote code execution
The malware is related to the MiniDuke, CosmicDuke and OnionDuke cyberespionage tools, researchers from Kaspersky Lab found
World renowned cryptographers highlighted various reasons why creating a master decryption key for the government to use is not practical
The company will launch new features for Office 365 designed to give organizations more control and visibility into their data
Website administrators should check if they have any affected plug-ins and update them in order to avoid attacks
The flaw in the AFNetworking library broke HTTPS certificate validation, enabling man-in-the-middle attacks
Google's push to encrypt ads might encourage more websites to deploy HTTPS, however.
New attacks were observed this year from the group, including against people with links to the White House
The IBM X-Force Exchange platform will allow companies to share and compare data from security incidents
All signs point to an increase in the number of memory scraping malware programs infecting PoS terminals to steal payment card data
The company released patches from 98 security issues in its products, 14 in Java
The company warned of a public exploit for one of the 22 vulnerabilities fixed in Flash Player.
Phishing attacks continue to be effective, but mobile threats are not a big concern, according to a Verizon report.