Google awarded a hefty $10,000 bounty to a high school student last week for uncovering a bug that could have let anyone access an internal Google website.

SAP released 19 patches on Tuesday, including a trio of vulnerabilities marked high severity in its business management software.

An unnamed firm is paying up to $250,000 for vulnerabilities related to its virtualization platform.

Mughthesec, a variant of the OperatorMac adware, has been turning hijacked Macs into revenue-generating machines for the authors.

Mozilla fixed three critical vulnerabilities and made Flash click-to-activate by default when it released Firefox 55 on Tuesday

Researchers at Kaspersky Lab have seen a resurgence of Mamba ransomware pop up recently in Brazil and Saudi Arabia.

Microsoft patched 25 critical vulnerabilities, including a remote code execution bug in Windows Search.

Attackers behind APT campaigns have kept busy in Q2 2017, adding new ways to bypass detection, crafting new payloads to drop, and identifying new zero days and backdoors to help them infect users and maintain persistence on machines.

Power Quality Engineering publicly exposed sensitive electrical infrastructure data on the public internet tied to Dell Technologies, SBC, Freescale, Oracle, Texas Instruments and the City of Austin.

Adobe today pushed out its first Flash Player update since announcing it would end-of-life the software in 2020.