Security News

Two vulnerabilities in two different WordPress plugins - an Arbitrary Variable Overwrite vulnerability in eShop, and an XSS vulnerability in Jetpack - were identified this week.

The United States Court of Appeals for the Second Circuit ruled Thursday that the Patriot Act does not authorize the bulk collection of phone records by the NSA. The ruling undermines the key...

Apple has issued a series of bulletins for its Safari browser fixing various security vulnerabilities in its WebKit rendering engine.

IOActive researchers disclosed details on three patched vulnerabilities in Lenovo's System Update mechanism.

As the expiration date for the controversial Section 215 of the Patriot Act draws near, the voices opposing a renewal of the surveillance powers the measure grants the NSA are growing louder. The...

Microsoft's introduction of Windows Update for Business puts an end to Patch Tuesday security updates as we know them.

More than five percent of all unique IP addresses accessing Google sites included some kind of ad injector software, and there are more than 50,000 of those injector browser extensions in use...

Hospira's Lifecare PCA3 Drug Infusion pumps are susceptible to multiple remotely exploitable vulnerabilities that could not only brick the device but allow an attacker to run commands and put...

Experts are concerned that Microsoft's new Local Administrator Password Solution only partially addresses the problem of identical passwords on computers in a domain.

Buffer and integer overflow vulnerabilities have been patched in the ICU Project ICU4C library, used in hundreds of open source and enterprise software packages.