Akamai warns that attackers are compromising IOT devices and using them as proxies to test stolen credentials against web-based applications.

One year after kicking off monthly Android security updates and Google still is way behind Apple when it comes to patching.

Women’s accessories giant Vera Bradley is reporting a breach of its retail store point-of-sale system.

Open Whisper Systems announced that it has added the disappearing messages feature to the Signal encrypted messaging app.

Mike Mimoso talks to Cigital CTO and software security pioneer Gary McGraw about the latest results pulled from the Building Security In Maturity Model (BSIMM).

The head of an international nuclear energy consortium said this week that a cyber attack caused a ‘disruption’ at a nuclear power plant in the last several years.

Microsoft released 10 security bulletins on Patch Tuesday that included patches for five zero day vulnerabilities under attack that had not been publicly disclosed until today.

Adobe patched 81 vulnerabilities, including a handful of critical bugs, in Acrobat, Reader, and Flash on Tuesday.

The IoT botnet behind the some of the largest publicly recorded DDoS attacks is flooding its targets with HTTP traffic in Layer 7 attacks.

Kaspersky Lab researchers have uncovered the StrongPity APT, a group that uses watering hole attacks to infect machines of users seeking encryption technologies such as WinRAR and TrueCrypt.