Security News

Members of the Senate voted overwhelmingly Tuesday to pass a version of the Cybersecurity Information Sharing Act, a bill that many opposed argue will lead to continued pervasive government spying.

Mike Mimoso talks to Cigital's Gary McGraw about software security and analysis from the sixth version of the Building Security in Maturity Model report.

Car hacking and phone jailbreaking were made exempt from restrictions in the DCMA.

Attackers have been carrying out attacks on sites running old, unpatched versions of Joomla following the disclosure of a critical SQL injection vulnerability in the software last week

Adobe updated its Shockwave Player, patching a critical memory corruption vulnerability in the software.

Two weeks after authorities announced they had taken down the botnet behind the banking malware Dridex, new research suggests the threat is alive and well.

Yahoo has hired former Twitter and Rapid7 security executive Bob Lord as its new CISO, taking over for Alex Stamos, who this summer left Yahoo for Facebook.

TalkTalk CEO Dido Harding said someone purporting to be the hackers who attacked the U.K. telecom demanded a ransom to keep them from publishing the stolen data.

The NSA is moving away from Elliptic Curve Cryptography, and cryptographers aren't buying their reasoning that advances in post quantum computing put ECC in jeopardy.

Mike Mimoso and Chris Brook discuss the news of the week: How Facebook will begin warning users of nation-state attacks, all the Apple and Oracle patches, and the latest attacks against the...