Don't-Miss Security Stories


Obama wants tech firms to help fight terrorism

U.S. President Barack Obama is seeking the help of tech companies to help combat terrorism, which he described as entering a new phase of terror threats.

Malware steals payment card data from PoS

New payment card malware hard to detect and remove

FireEye says it has discovered a type of malware designed to steal payment card data that can be very difficult to detect and remove.

returned tablet notifications

If you return a tech gift this Christmas, make sure you erase all your data first

Mark Hachman discovered that the open box tablet he purchased still was keyed to a prior account. Don't make the same mistake.

security code big data cyberespionage

Russian spy group adopts new tools to hack defense contractor networks

Pawn Storm has adopted new tools in an ongoing attack campaign against defense organizations with the goal of defeating network isolation policies.

victim identity theft computer problem

Widespread exploit kit, ransomware program, and password stealer mixed into dangerous malware cocktail

An ongoing attack campaign combines a very effective password stealer, the most widespread exploit kit, called Angler, and the latest version of the infamous CryptoWall file-encrypting ransomware program.

smart tv

Millions of smart TVs, phones and routers at risk from old vulnerability

A three-year-old vulnerability in a software component used in millions of smart TVs, routers and phones still hasn't been patched by many vendors, posing a risk, according to Trend Micro.

hack security malware

Microsoft teams with law enforcement to disrupt Dorkbot botnet

Microsoft said Thursday it aided law enforcement agencies in several regions to disrupt a four-year-old botnet called Dorkbot, which has infected one million computers worldwide.


Let's Encrypt free digital certificate project opens doors for public beta

Let's Encrypt, the project offering free digital certificates for websites, is now issuing them more broadly with the launch of a public beta on Thursday.

Digital Key

No more security fixes for older OpenSSL branches

The OpenSSL Software Foundation has released new security patches, but for branches 0.9.8 and 1.0.0 these will likely be the last security updates.

malware payment terminal credit card

New attack campaign against SMBs uses a botnet to deliver PoS malware

A group of sophisticated attackers are breaking into the networks of small and medium-size businesses worldwide with the goal of infecting their point-of-sale systems with malware.

signal desktop

Snowden-endorsed encrypted messaging app Signal comes to your browser

The much-lauded encryption app Signal has launched a beta program for a desktop version of the app.

us china relations flag

US, China take first steps toward cybersecurity cooperation

The U.S. and China have reached an agreement on how to begin cooperating on cybersecurity, an issue that has caused high tension between the two nations over the last few years.

150817 google marshmallow 03

Cisco patches permission hijacking issue in WebEx Meetings app for Android

Cisco's WebEx Meetings application for Android had a vulnerability that allowed potentially rogue applications to hijack its permissions.

malware infection cyberattack

Ransomware and scammy tech support sites team up for a vicious one-two punch

Symantec has seen a curious fusing of two pernicious online threats, which could cause a big headache if encountered by users.

vtech innotab 3

Toy maker VTech says breach hit 6.4 million kids' accounts

Educational toy maker VTech said Wednesday that 11.6 million accounts were affected by a mid-November cyberattack, including those of 6.4 million kids