Don't-Miss Security Stories

20151027 openworld oracle cloud signs

Oracle issues record number of patches to combat flaws

Oracle admins will be busy: The company issued 248 patches on Tuesday, its largest-ever release, according to one security vendor.


Brinks Home Security Array smart deadbolt recharges its battery with solar power

The new lock connects directly to your Wi-Fi router, eliminating the need for a hub or bridge.


Fraud gang targeted large European companies

Dridex banking malware adds a new trick

IBM's X-Force researchers have found that the latest version of Dridex uses a DNS (Domain Name System) trick to direct victims to fake banking websites.


Advocacy group calls on health-care industry to adopt medical device security principles

Advocacy group I Am the Cavalry is urging organizations that manufacture and distribute medical devices to adopt a cybersecurity version of the Hippocratic Oath.

1016 primary password

These are the 25 worst passwords of 2015

SplashID recently published its round-up of the worst passwords of 2015. '123456' and 'password' still reign supreme

angry linux

Linux kernel flaw threatens millions of PCs, servers, and Android devices

A three-year-old vulnerability in the Linux kernel could have allowed attackers to take full control over Linux-based PCs, servers, Android phones and other embedded devices.

Regin and the continuing saga of the surveillance state

Pakistan unblocks YouTube after Google launches local version

Pakistan has lifted a ban on YouTube in the country after Google offered a localized version, which the government claims will allow it to ask for the removal of material considered offensive from the website.

Digital Key

Advantech industrial serial-to-Internet gateways wide open to unauthorized access

Specialized gateway devices made by Advantech that are used around the world in industrial environments to connect legacy serial equipment to TCP/IP and cellular networks can be accessed with any password.

Security online

LastPass phishing attack could have scooped up passwords

A relatively simple phishing attack could be used to compromise the widely used password manager LastPass, according to new research.

130524 101traffic 4

Automakers will collaborate to try to stop car hacks before they happen

Major automakers plan to work with the U.S. government to attempt to proactively deter hacks of connected cars before they become a major issue.

malware primary

Here are the most malware-ridden cities in America

Little Rock, Arkansas tops the list of U.S. cities most infected by malware.

malware payment terminal credit card

Hyatt hackers hit payment processing systems, scooped cards used at 250 locations

Hacker managed to compromise payment cards used at 250 Hyatt Hotels locations from around 50 countries after infecting the company's payment processing systems with malware.

Digital Key

OpenSSH patches information leak that could expose private SSH keys

A vulnerability in OpenSSH clients could expose users' private SSH keys to rogue or compromised servers.

Apple logo from inside Apple Store in Boston

Researcher finds fault in Apple's Gatekeeper patch

Apple hasn't completely fixed a weakness in Gatekeeper, its security technology that blocks harmful applications from being installed.

150817 google marshmallow 03

Android banking malware SlemBunk is part of a well-organized campaign

The SlemBunk Android Trojan that targets mobile banking users has evolved into a hard-to-detect threat, researchers from FireEye found.