Security News > 2018 > April

Updates released on Wednesday for Drupal 8 patch a moderately critical cross-site scripting (XSS) vulnerability affecting a third-party JavaScript library. The flaw impacts CKEditor, a WYSIWYG...

With the Chrome 66 comes blissful quiet: Google is muting all autoplay content by default.

Be careful while plugging your iPhone into a friend's laptop for a quick charge or sharing selected files. Researchers at Symantec have issued a security warning for iPhone and iPad users about a...

Attorney and former CIA case officer Jack Rice explains how foreign actors could attack critical infrastructure, and how US intelligence agencies deploy a proportional response to cyber attacks.

Home Office admits national and local databases don't talk to each other, so everything is manual The UK government has admitted it can only delete custody images from its massive database through...

It's time to update your Drupal websites, once again. For the second time within a month, Drupal has been found vulnerable to another critical vulnerability that could allow remote attackers to...

First word on how card security for containers, VDI, SDN and web apps The Payment Card Industry Security Standards Council (PCI SSC) has issued a big update to its guidance on using payment cards...

A feature that allows users to wirelessly sync their iPhones and iPads with iTunes can be abused by hackers to take control of iOS devices in what researchers call a “Trustjacking” attack. read more

Your security's only as good as your partners'. And some Facebook partners are rotten A security researcher has claimed it's possible to extract user information from Facebook's Login service, the...

Popular mobile applications that use third-party, ready-to-go advertising Software Development Kits (SDKs) expose user data by transmitting it over the insecure HTTP protocol, Kaspersky Lab warns....