Security News

The market for automated credential stuffing tools is growing fast, because of a record number of breaches.

Researchers warn two features, not flaws, in Android can be used together to open devices up to attack.

Twitter fixed a flaw in its Twitter Ads service could have allowed an attacker to tweet as any user.

An academic paper to be presented today at IEEE posits that analysis of network signals provides a better early warning of malware than infections than current practices.

Attackers can remotely execute code on targeted systems via specially crafted subtitle files for videos.

Android O, due in the third quarter, figures to elevate the security of the mobile OS with new features focused on improved third-party patching, a new permission model and hardening of existing features.

Researcher Chris Evans reported a new bug and showed how also used a previously known flaw in ImageMagick to leak Yahoo server data and steal images and authentication secrets.

Apple revealed this week that it received at least one National Security Letter from the U.S. government for user data during the last six months of 2016

The country's top cybersecurity boss said the country is headed the wrong way when it comes to cybersecurity.

Verizon patched late last year persistent- DOM-based cross-site scripting vulnerabilities in its Message+ messaging client that could allow an attacker to control a user's session.