Security News

Dennis Fisher talks with Jeremiah Grossman of WhiteHat Security about his RSA Conference talk on the coming change in the security industry regarding guarantees, security insurance and how it will...

A nasty remote code execution vulnerability was recently patched in Magento, eBay’s eCommerce platform

Dennis Fisher talks with Brian Donohue in advance of Brian's first visit to the RSA Conference this week. They discuss what to expect in terms of the content, the chaos and the suit-to-civilian...

Google engineers have spent the last several years moving many of the company’s online services to encrypted links. Gmail is HTTPS by default, and Google search is done over SSL for much of the...

Dennis Fisher and Mike Mimoso discuss the Windows HTTP.sys vulnerability, Google's decision to turn off the NPAPI in Chrome and the voting machine security disaster in Virginia.

Public denial-of-service exploits for a critical vulnerability in Microsoft's implementation of the HTTP protocol stack, HTTP.sys are under way, while remote code execution attacks may still be to come.

Teslacrypt, the fairly new strain of ransomware that's been targeting gamers, is continuing to make the rounds online.

Voting machines in Virginia are hopelessly vulnerable to scores of low level hacks, calling into question the integrity of recent elections there.

With the release of Chrome 42 this week, Google fixed more than 40 vulnerabilities. But the most significant security change in the new browser is Google’s decision to disable the NPAPI,...

Dropbox has become the latest high-profile Internet firm to start a bug bounty program, hooking up with HackerOne to provide rewards to security researchers who report vulnerabilities through the...