Don't-Miss Security Stories

Google sets up cybercrime-busting task force

After unearthing the Heartbleed flaw, Google sets up a research group dedicated to finding vulnerabilities in Web software.

Critical design flaw in Microsoft's Active Directory could allow password change

Microsoft contends the general issue has been long-known, but Israel-based Aorato has developed a working attack

EA dismisses claim its Origin software spies on gamers

A screenshot posted on Reddit does not represent information collected by Origin, an EA spokeswoman said

PCWorld News

New banking malware 'Kronos' advertised on underground forums

Its creators seek to establish the new threat as a premium commercial alternative to older Trojans like Zeus

Future Java 7 security patches will work on Windows XP despite end of official support

Windows XP users will continues to receive Java 7 security updates until at least April 2015, Oracle says

laspass icon

LastPass discloses now-fixed vulnerabilities ahead of security conference

The company doesn't believe attackers exploited the flaws

The 5 biggest data breaches of 2014 (so far)

Hackers, mistakes, bad security and stupidity are putting your data at risk like never before.

PCWorld News

Oracle to release 115 security patches

Java SE and Fusion Middleware alone will receive nearly 50 fixes in Tuesday's update

PCWorld News

Microsoft revokes trust in certificate authority operated by the Indian government

A security breach at India's National Informatics Centre resulted in at least 45 rogue digital certificates for Google and Yahoo domains

gmail logo

Gmail users on iOS at risk of data interception

Lacoon Security found Google hasn't yet implemented a security technology that could prevent data loss

PCWorld News

Google to tour Europe to discuss right-to-be-forgotten ruling

Testing a removal request is a 'very vague and subjective' process, Google's chief legal officer said

PCWorld News

Source code for tiny 'Tinba' banking malware leaked

The code has appeared in an underground forum, according to Denmark-based security company CSIS

PCWorld News

Malware hidden in Chinese inventory scanners targeted logistics, shipping firms

Researchers from TrapX discovered a sophisticated multistage cyberespionage attack that started in the supply chain