Don't-Miss Stories

windows10 logo

Windows 10 to get two-factor authentication built-in

The new OS will feature enhancements in areas like identity protection, data security and malware resistance

securityshowdown primary

Microsoft discloses severe Office zero-day flaw, publishes quick fix

Attacks are under way using PowerPoint file, the company said

Flash vulnerability being exploited in large-scale attacks, mere days after patch

The Fiesta exploit kit bundles an exploit for the CVE-2014-0569 vulnerability in Flash Player, researchers found

nodropbox

One of the most convincing phishing attacks yet tricks you with Dropbox sharing

Dropbox was quick to remove the bogus login page, Symantec said

android malware

New attack hides stealthy Android malware in images

The attack could be used to distribute malware through applications that appear harmless, researchers said

youtube logo 2014

YouTube served users malicious advertisements, Trend Micro says

The advertisements redirected victims to the Sweet Orange exploit kit, which tries to install malware.

poodle attack

Fix for critical 'POODLE' attack against SSL 3.0 could break Web for Internet Explorer 6

Experts say that SSL 3.0 should be disabled even though some legacy products still use it.

microsoft logo

Microsoft Patch Tuesday tackles three critical vulnerabilities, including 'Sandworm'

The Sandworm vulnerability gets a fix with this month's round of corrective fixes for Microsoft software. Internet Explorer gets a fix, too.

dropbox sync

Dropbox says it wasn't hacked after 7 million alleged user credentials appear online

The credentials leaked by an alleged hacker online were likely stolen from other services, the company said.

hacker hand

Russian hackers exploit Windows zero-day flaw to target Ukraine, U.S. organizations

The vulnerability allows for arbitrary code execution and affects many versions of Windows and Windows Server