Security News

Apple pushed out its latest operating system, El Capitan, yesterday, and while it boasts many security fixes, the update fails to address the outstanding vulnerability in Gatekeeper that came to...

Google announced that it has made HTTPS available as an opt-in for its Blogspot blog-publishing service.

Researchers at Zimperium have reported two new Stagefright vulnerabilities affecting one billion Android devices.

A mysterious Windows 7 update that led to speculation Windows Update was compromised, was actually a test update accidentally published by Microsoft.

Unsupported versions of Honeywell distributed control system software are vulnerable to publicly available remote exploits.

Researcher Patrick Wardle will demonstrate a Mac OS X Gatekeeper bypass that exploits a weakness in the Apple OS that allows signed apps to execute malicious code.

Apple has polished its privacy policy, with new messaging about the sanctity of its users' security and privacy.

The Dyreza, or Dyre, Trojan has been spotted phishing credentials in attacks against the IT supply chain.

SAP patched a dozen holes in its in-memory management system HANA that could have led to SQL injections, cross-site scripting (XSS) errors, and memory corruption vulnerabilities.

Two privilege escalation vulnerabilities in the last TrueCrypt build were discovered by James Forshaw of Google Project Zero, and patched in VeraCrypt.