Necurs botnet launches fresh assault against banks

The spam botnet has been harnessed in order to compromise close to 3,000 financial institutions.

1990s technology exposes 32,000 smart homes, businesses to exploit

When modern IoT gadgets rely on technology from the 1990s, it is unsurprising that security becomes a problem.

Mozilla wipes 23 Firefox add-ons off the map for tracking user activity

Updated: The purge was prompted by the exposure of the Web Security add-on's data-slurping habits.

'Hacky hack hack': Teen arrested for breaking into Apple's network

Updated: The Apple fan allegedly managed to download roughly 90GB in corporate documents as well as access customer accounts.

Open-source vulnerabilities which will not die: Who is to blame?

Major open-source vulnerabilities have wreaked havoc and caused heartache for IT admins worldwide.

Severe vulnerability exposes WordPress websites to attack

Researchers say the PHP security flaw could leave countless WordPress websites open to exploit.

Google expands bug bounty program to include fraud protection bypass, free purchases

External attack vectors and techniques which bypass spam and fraud systems are now part of the program.

Firefox add-on snoops on 200,000 users' browsing activities

Updated: The add-on was quietly removed from a recommendations list on the official Firefox blog.

Former Microsoft engineer sent behind bars for role in ransomware extortion scheme

The engineer was neck-deep in laundering proceeds from Reveton ransomware victims.

Adobe fixes critical code execution flaws in latest patch update

Two vulnerabilities in Acrobat and Reader are considered critical.

Microsoft Patch Tuesday: 60 vulnerabilities resolved including two active exploits

A total of 19 vulnerabilities are deemed critical, including two zero-day flaws being actively used in the wild.

Instagram hack is locking hundreds of users out of their accounts

Recovery options are being changed to .ru addresses by an unknown threat actor.

​Beyond Spectre: Foreshadow, a new Intel security problem

Researchers have broken Intel's Software Guard Extensions, System Management Mode, and x86-based virtual machines.

Hackers can infiltrate police body cameras to tamper with evidence

It is possible that crucial recordings could be modified or deleted due to vulnerabilities in body cam software.

Man-in-the-Disk attacks take advantage of Android storage systems

Updated: The novel attack technique relies on Android developers which use lazy storage protocols.

The future of IoT? State-sponsored attacks, say security professionals

IT security professionals believe that nation states will begin to exploit smart, connected devices in the next 12 months.

Apple macOS vulnerability paves the way for system compromise with a single click

Tampering with two lines of code unveiled a serious bug which could lead to full system compromise.

25 Android smartphone models contain severe vulnerabilities off the shelf

Researchers say that the swathe of bugs impacts major vendors.

Hackers can steal data from the enterprise using only a fax number

Fax machines are still widely used by businesses and a communications protocol vulnerability is leaving them exposed to cyberattacks.

PayPal, Square vulnerabilities impact mobile point-of-sale machines

Researchers have disclosed the existence of point-of-sale bugs which impact mobile payment services worldwide.

AWS error exposed GoDaddy business secrets

Updated: It is believed information belonging to thousands of GoDaddy systems was leaked due to the failure.

Crowdfense launches platform to source new zero-day vulnerabilities for sale

Researchers will be given a platform to sell both zero-day security flaws and exploit chains.

Open, Cortana: Voice assistant used to bypass locked Windows 10 machine security

Exploit of Microsoft's Cortana did not require any external code.

Challenge accepted: 15-year-old plays Doom on 'unhackable' Bitfi

Bitfi is becoming something of a joke as an "unhackable" device -- but there may be more to come.

Smart city systems are riddled with critical security vulnerabilities

Updated: Researchers have uncovered countless zero-day bugs which can be used to kill our critical city systems.

BIND DNS software vulnerability which could lead to DoS attacks exposed

The bug impacts multiple versions of the open-source software.

Comcast customer portal vulnerabilities exposed sensitive data

Two serious security flaws in Comcast systems may have left home addresses and social security numbers up for grabs.

OpenEMR security flaws could have exposed millions of patient records

Over 20 severe bugs were found using only manual methods by a single cybersecurity group.

DeepLocker: When malware turns artificial intelligence into a weapon

In the future, your face could become the trigger for the execution of malware.

New Wi-Fi attack cracks WPA2 passwords with ease

The common Wi-Fi security standard is no longer as secure as you think.

Pentagon bans military from using GPS apps and fitness trackers

Those on active duty are being told not to use devices and apps with GPS, but the policy may be difficult to impose.

You can buy Bitcoin ATM malware for $25,000 in the Dark Web

Malware targeting cryptocurrency-based ATMs commands high prices in the underground.