ICS-CERT warns of default credentials in Schneider Electric Wonderware Historian that can be abused to compromise Historian databases.

Firefox 51 includes warnings to users landing on HTTP websites, and patches for nearly a half-dozen critical security vulnerabilities.

Security researchers have identified a new and evasive mobile ransomware strain called Charger on the Google Play app store.

A new version of the SpyNote Trojan is designed to trick Android users into thinking it’s a legitimate Netflix application.

President Trump’s attorney general pick Jeff Sessions says law enforcement should be able to “overcome” encryption in criminal investigations.

Services are being restored to the St. Louis Public Library computer system after a ransomware attack impacted access to machines and data at all 17 branches.

Cisco has fixed a vulnerability in its WebEx extension for Chrome that allowed for remote code execution on computers running the plugin.

Google has removed 20 apps from Google Play that were spreading a variant of the HummingBad Android malware called Hummingwhale.

Apple released updates across its product lines, including iOS 10.2.1, patching a number of critical code execution vulnerabilities in the kernel, libarchive and WebKit.

Lavabit, the secure email provider that suspended operations back in 2013 after the US government asked for its users SSL keys, relaunched Friday under a new architecture.