Security News

Hosting provider Web.com said it was breached last week and hackers made off with payment card and personal data belonging to 93,000 customers.

Italian researcher Luca Todesco explains how exploiting two vulnerabilities in OS X gain enable root access for a hacker. He won't, however, say why he went public with details and exploit code...

Microsoft released an out-of-band patch for an Internet Explorer vulnerability under attack.

The Core Infrastructure Initiative, which has funded OpenSSL among other open source security projects, announced a badge program that evaluates secure development best practices.

The Internal Revenue Service disclosed this week that following the latest review of its system, 334,000 taxpayers - more than three times the agency’s initial estimate – may be affected by the...

A publicly disclosed zero day in current version of Apple OS X remains unpatched.

Adobe pushed out a hotfix for LiveCycle Data Services patching an XXE vulnerability in BlazeDS.

Level 3 Communications has discovered a new type of reflection DDoS attack that takes advantage of RPC Portmapper to overwhelm networking services.

Ride-sharing company Uber, which has already battled a database compromise and hackers selling stolen accounts this year, announced over the weekend that it will bulk up its security division.

Vulnerabilities in Schneider Electric SCADA gear remain unpatched close to two weeks after they were disclosed during DEF CON.