Security News

Researchers find industrial control system malware similar to BlackEnergy, Havex, and Stuxnet going undetected on Google VirusTotal for years.

Russian authorities made 50 arrests related to a five-year campaign to steal $45M from Russia's largest bank, Sberbank.

Moxa has opted to discontinue embedded computers that suffer from a vulnerability which can allow remote authenticated users to write to the firmware and render devices unusable.

The FBI proposal to keep its massive biometric database private is opposed by privacy activists who are demanding more time to review the request.

Yahoo today disclosed the contents of three National Security Letters it received in 2013 and 2015, becoming the first company under reforms afforded by the USA FREEDOM Act to do so.

Hackers claim to have unearthed a zero-day vulnerability giving attackers admin rights to any Windows machine from Windows 2000 to a fully patched version of Windows 10.

At Hack in the Box last week, a researcher demonstrated a new tool that swaps out legitimate iOS apps with malicious versions, beating mitigations in place on Apple devices.

Hackers are selling roughly 427 million passwords belonging to users of MySpace along with information on 65 million Tumblr users.

Crooks breaking into enterprise networks are holding data they steal for ransom under the guise they are doing the company a favor exposing a flaw.

High-severity vulnerabilities were found in pre-installed software updaters present in consumer and business laptops from vendors such as Dell, HP, Lenovo, Asus and Acer.