Security News

SAFECode announced today the publication of the Fundamental Practices for Secure Software Development: Essential Elements of a Secure Development Life Cycle Program (Third Edition). The...

Recovering Encrypted Firefox Passwords via Brute Force Attacks is Easy, Developer Says Firefox does a poor job at securing stored passwords even if the user has set up a master password, a...

Arkansas Man Admits Developing, Selling Software Intended for Malicious UseArkansas developer Taylor Huddleston has been sentenced to serve more than two years in prison for developing, marketing...

New malware and unwanted apps are discovered on Google Play nearly every day – or so it seems. According to Google’s statistics, in 2017 the company has taken down more than 700,000 apps that...

The official website of Ukraine-based accounting software developer Crystal Finance Millennium (CFM) was abused for the distribution of a variant of the ZeuS banking Trojan, Talos reports. read more

Finally, here we have a vulnerability that targets Android developers and reverse engineers, instead of app users. Security researchers have discovered an easily-exploitable vulnerability in...

A proof of concept attack developed by researchers target users of the development platforms for Android and Java.

Popular Git repository hosting service GitHub has introduced a new feature to help developers keep their projects safer: security alerts for vulnerabilities in software packages which their...

Code hosting service GitHub now warns developers if certain software libraries used by their projects contain any known vulnerabilities and provides advice on how to address the issue. read more

A NodeSource and Sqreen joint developer survey of nearly 300 CTOs, CIOs and developers revealed that, while the developer community fully understands the risks of operating in the open Internet...