Microsoft said a Windows SMB zero day, which has a public proof-of-concept exploit available, is low risk and won’t be patched until an upcoming Patch Tuesday.

WordPress silently fixed a serious content injection vulnerability when it pushed out its latest security release, 4.7.2, last week

MacKeeper says it has found gigabytes of sensitive personal data stored by PIP Printing and Marketing Services and accessible online.

Google pumped more life into the use of physical keys as a second form of authentication when it added Security Key enforcement support to G Suite.

This week HTTPS hit a huge milestone. According to a two-week survey of telemetry data from the Mozilla Firefox browser, 50 percent of page loads used HTTPS.

Ubuntu users are encouraged to update their operating systems to the latest OpenSSL package versions to address a collection of vulnerabilities.

Zimperium announced Tuesday its N-Days Exploit Acquisition Program that will reward researchers for Android and iOS exploits.

President Donald Trump postponed the release and signing of an Executive Order around cybersecurity that calls for a 60-day review systems and critical infrastructure.

Researchers have found a half-dozen flaws in popular printer models that allow attackers to do everything from steal print jobs to conduct buffer overflow attacks.

Debian developers are recommending that the Cryptkeeper Linux encryption app be pulled from the distribution after a universal password was found.