Don't-Miss Security Stories
The Socat networking service used a non-prime number for its key exchange mechanism, potentially allowing attackers to eavesdrop on encrypted connections opened with the tool.
A customized version of Google's Chrome browser developed by security vendor Comodo has a jaw-dropping flaw, according to a researcher.
Malwarebytes said it may take three to four weeks to fix flaws in its consumer product found by Google security researcher Tavis Ormandy.
Some of the more popular wearables from Fitbit, Jawbone, and Garmin don't just let you track your fitness, they let other people track you too.
Google has patched thirteen new vulnerabilities in Android, two of which could allow attackers to take control of Android devices located on the same wireless network.
FireEye said Monday it has acquired Invotas, a company that develops a platform that helps administrators respond faster to security incidents.
When it comes to the problem of stopping errant drones, there's been a number of high-tech solutions. From radio jamming to laser beams to nets launched by other drones, but a group in The Netherlands is proposing a low-tech solution that's much more elegant.
Over 60 Android games hosted on Google Play had Trojan-like functionality that allowed them to download and execute malicious code hidden inside images.
A study from Harvard released Monday largely refutes claims that wider use of encryption in software products will hamper investigations into terrorism and crime.
The Chrome Web Store is more interested in pushing Chrome apps than giving users the best search results.
Cisco Systems has released security patches for flaws affecting a wide range of products, including for a critical vulnerability in its RV220W wireless network security firewalls.
A denial-of-service attack against HSBC in the U.K. left customers unable to access their accounts via the bank's online system.
LG has patched a security flaw in an application preinstalled on millions of its Android G3 smartphones that researchers found could be used to steal a variety of data.
The OpenSSL project has patched a problem in the cryptographic library but one that likely does not affect many popular applications.
An increasing number of iOS application developers use a technique that allows them to remotely modify the code in their apps without going through the official app store's review process, an action that poses security risks for users.