Security News > 2017 > September

Adobe has patched only two vulnerabilities in Flash Player this month, but they can both be exploited for remote code execution and both have been classified as critical. read more

Despite the long-touted benefits of information sharing in security and intelligence, the practice isn’t as widely adopted as it should be. Often citing concerns over trust, many organizations...

Have the attackers responsible for the Equifax data breach exploited a vulnerability in Apache Struts, a popular open source framework for developing web applications, to compromise the company’s...

Even With Lower Capital Costs on Paper, the Cost of the “Fire, Ready, Aim" Approach is Reputation read more

When people think about complex security challenges, airport security might be the most familiar. The scope of challenges and implications of breaches are daunting. This is especially true when...

Massive Breach Turns Equifax's 'Products' Into Victims, But Don't Expect JusticeIf the Equifax breach turns out like every other massive data breach we've seen for more than a decade, after a big...

Google Will Slowly Start Pulling the Rug From Under Symantec's Digital CertificatesA major operation to cleanse websites of digital certificates created under questionable circumstances is...

In this podcast recorded at Black Hat USA 2017, Ankur Tyagi, senior malware research engineer at Qualys, talks about visual network and file forensics. Here’s a transcript of the podcast for your...

Billions of Android, iOS, Windows and Linux devices that use Bluetooth may be exposed to a new attack that can be carried out remotely without any user interaction, researchers warned. read more

Bluetooth attack vector, dubbed ‘BlueBorne’, leaves billions of smart Bluetooth devices open to attack including Android and Apple phones and millions more Linux-based smart devices.