Google’s monthly over-the-air Nexus security updates for December included patches for a critical flaw in Mediaserver and a rooting vulnerability in the Android kernel.
Experts believe that the success tied to a recent spate of DDoS for hire groups may be because many are copycat collectives operating with a shorter lifespan.
Nemesis, a specialized strain of payment card malware that has bootkit functionality, makes it very difficult to detect, much less remove.
The Let’s Encrypt initiative reached yet another milestone this week when it entered public beta, a step that it claims will help make it easier for website owners to embrace HTTPS encryption.
The OpenSSL Software Foundation patched four vulnerabilities on Thursday, likely the last time that two older versions of the software library will receive updates.
Researchers at Kaspersky Lab release an update on the Sofacy gang, also known as APT28, explaining a set of new malware implants, backdoors and zero days at the group’s disposal.
Moxie Marlinspike’s Open Whisper Systems released Signal Desktop, a desktop version of Signal end-to-end encrypted messaging application.
Adobe’s announcement that it has retooled—and renamed—Flash is a longterm signal that the vulnerable and fatigued platform is on its last legs.
Cisco patched its WebEx mobile app for Android, and published advisories warning of vulnerabilities in three other products.
One of the most popular exploit kits, Angler, has been spotted spreading the ransomware Cryptowall 4.0.