Apple watchOS2 arrived with a host of security patches, including fixes for more than a dozen code-execution bugs.
A South Korean child monitoring app is so fraught with vulnerabilities that security researchers warn it could lead to the compromise of users’ accounts, disclosure of minors’ information, and a smattering of other issues.
iOS apps infected with the XcodeGhost malware have been removed from the App Store and three command domains communicating with infected apps have been shut down.
Adobe has released a Flash Player update that addresses 23 critical vulnerabilities in the software, many which can lead to code execution.
Exploit vendor Zerodium will host a month-long million-dollar bug bounty focused on Apple iOS 9.
As expected, Google formally announced its intent to move away from the stream cipher RC4 and the protocol SSLv3 this week, citing a long history of weaknesses in both.
Private keys used to sign D-Link software were included in open-source firmware published by the company.
Apple pushed out iOS 9 Wednesday, addressing a cornucopia of vulnerabilities, including bugs that could lead to arbitrary code execution, credential leakage, interface spoofing, among other issues.
Bugzilla users should upgrade to current versions after a privilege escalation vulnerability was reported and patched.
Ryan Naraine hijacks the podcast to talk with Dennis Fisher about the origins of Threatpost, his time as a security reporter, the changes in the industry, and what’s next on the horizon.