There is a vulnerability buried deep in the firmware of many Apple laptops that could allow an attacker to overwrite the machine’s BIOS and install a rootkit, gaining complete control of the Mac. The vulnerability lies in the UEFI system on some older MacBooks, and researcher Pedro Vilaca discovered that after a MacBook is put to[…]
A poor crypto implementation in the Blockchain Android app results in lost Bitcoin for a number of affected users.
Apple has provided users a workaround for a bug in iMessage that allows someone to crash devices by sending a specially crafted text message.
A dozen vulnerabilities, including three critical architectural issues, in PeopleSoft implementations were discussed this week at Hack in the Box, putting ERP security in the spotlight.
Dennis Fisher talks with Brian Donohue about his time at Threatpost, learning about security and the joy and pain of being a journalist.
Today at Google I/O, the company announced a new system for Android that it hopes will urge developers to seek fewer excessive permissions for mobile applications.
The Angler Exploit Kit has added a new Flash exploit to its arsenal, and is dropping Cryptowall 3.0 ransomware.
Apple announced that it will block out of date versions of Flash Player after a major update to the Adobe software two weeks ago.
Human machine interface software from Rockwell Automation has been patched, protecting users from a vulnerability in the way stored passwords are protected.
Microsoft security products will begin detecting software containing search protection functions and classifying it as malicious on June 1.