Adobe patched 17 critical remote code execution vulnerabilities in Flash Player.
Researchers have built proof-of-concept exploits for an unpatched unserialize vulnerability in Apache Commons Collections, a library used in most Java rollouts.
A security firm is warning this week that 88 percent of networks are at risk of being compromised via credential theft and reuse.
Certificate authority Comodo admits it incorrectly issued eight certificates that include forbidden internal server names or reserved IP addresses.
Encrypted email service ProtonMail is back online Monday following a crippling six-day DDoS attack.
Nearly two dozen critical SAP HANA vulnerabilities have been patched, including a critical misconfiguration of the TrexNet administrative interface.
Microsoft said this week it’s considering moving up its deadline for blocking SHA-1 signed certificates to June 2016.
Critical industrial switches from Advantech used worldwide for automation contained hard-coded SSH keys that put devices and networks at risk.
The Chimera ransomware targets companies in Germany with a promise to publish victims’ encrypted data online if a $700 ransom is not paid.
The latest Cryptowall ransomware update makes it harder to recover encrypted files, and also mocks the victim in a revamped ransom note.