General Motors’ new vulnerability disclosure program does not come with a monetary reward, but the automaker promises not to sue researchers looking for flaws in its products and services.
Tuesday’s impending deadline ending security support for Internet Explorer 8, 9 and 10 is putting companies on notices about moving off older versions of the browser.
Mike Mimoso and Chris Brook discuss the week in news: How the Dutch are opening encryption with open arms, the end of support for IE 8, 9, and 10, and the latest bounty offered up by Zerodium.
Mozilla warns Firefox users that the browser’s rejection of new SHA-1 certificates is keeping some users behind security scanners and antivirus software from reaching HTTPS sites.
Roughly 320,000 Time Warner Cable customers are being urged to change their email passwords this week after the company announced Wednesday that hackers may have gained access to them.
Developers at WordPress are warning users of the content management system to download and apply the most recent update, pushed yesterday, to address a cross-site scripting vulnerability.
Researchers have demonstrated new collision attacks against SHA-1 and MD5 implementations in TLS, IKE and SSH.
A number of issues exist in the content management system Drupal that could lead to code execution and the theft of database credentials via a man-in-the-middle attack, a researcher warns.
Researchers at mobile security company Lookout found 13 malicious apps on Google Play that are related to the Brain Test malware family.
Silent Circle patched a Blackphone vulnerability, closing an open socket that exposed the mobile device’s modem to attack.