A critical vulnerability in GnuTLS, a popular open source crypto library, puts hundreds of software packages including popular Linux distribution at risk.
Critical infrastructure policymakers are calling for the formation of a new group to better protect the North American electric grid from cyber-attacks.
A team of researchers has published a paper that explains a number of attacks against websites and Web-based applications running TLS.
Google has fixed 19 security flaws in its Chrome browser, including more than a dozen high-risk bugs. The company paid out $3,500 in rewards to security researchers who reported flaws. Two of the high-risk vulnerabilities fixed in Chrome 33 are use-after-free flaws, one in SVG images and the other in speech recognition. There’s also a[...]
Verizon updated its transparency report, publishing data on FISA orders for customer content and account information.
The burgeoning evolution of “Internet of Things” has prompted Cisco to issue a challenge to programmers to address these security issues before they go on to become bigger problems.
More than 300,000 home and small office routers were compromised in large-scale attacks that altered DNS configurations and redirected traffic to attacker-controlled sites.
Schneider Electric Mitigates Vulnerabilities in OPC Factory Server and Floating License Manager Products
ICS-CERT posted a pair of advisories for Schneider Electric SCADA and industrial control system equipment that could allow an attacker to execute malicious programs.
Apple updated its iOS Security guide with new information on the encryption and security processes protecting iCloud Keychain, Recovery and Internet services such as iMessage, FaceTime and more.
Oracle’s Demantra is fraught with vulnerabilities that could allow an attacker to extract sensitive information, carry out phishing attacks, and modify content within the application, among other attacks.