Don't-Miss Security Stories
Attackers compromised ICS/SCADA vendor sites and altered software downloads to distribute the malware, researchers from F-Secure said
Merely knowing what pages a person views on a website can hint at their personal life
High-traffic websites can potentially expose thousands of visitors to automated attacks
A large number of sites are still vulnerable to Heartbleed, but it's unlikely we'll see them get patched anytime soon.
Proxy services to hide details of domain registrants from the Whois database should be allowed, a researcher said
But fear not: This fork isn't intended to replace OpenSSL.
The Syrian Electronic Army compromised a third-party widget to redirect some Reuters.com visitors to a defacement page
Could allowing strangers to use your Wi-Fi actually protect your privacy? The EFF thinks so, and plans to make it easier with a new tool.
Developers of the Modern Honey Network want to simplify deployment and monitoring of these threat-intelligence systems
A new version of Android for Nexus devices is primarily a security update that patches the bundled OpenSSL library
A scan of the Internet showed more than 31,000 servers are vulnerable
CodeSpaces.com shut down after a hacker gained access to its Amazon EC2 account and deleted most data, including backups
Potential customers in China and elsewhere are worried about the security of public-cloud data, HP's enterprise chief says