A crowdfunding effort to buy a subscription to the ShadowBrokers’ Monthly Dump Service of stolen exploits and data was shut down citing legal and ethical concerns.

A breach at OneLogin appears to have compromised customer data, including the ability to decrypt encrypted data.

Researchers at Kaspersky Lab have found a number of programming errors in the WannaCry ransomware code that put file recovery within reach of sysadmins.

Senators introduced a bill last week to establish a bug bounty pilot program within the Department of Homeland Security.

A high-severity vulnerability in sudo has been patched in a number of Linux distributions; the flaw allows local attackers to elevate privileges to root.

Cisco is prepping fixes for two of its products affected by last week’s Samba vulnerability. Netgear has also pushed out a fix for NAS devices that were affected.

Google announced today new security features in Gmail, including the news that it will enhance early phishing detection in Gmail through dedicated machine learning.

Ecommerce sites using the Yopify plugin were leaking customers’ names, locations and purchases.

Developers behind FreeRADIUS, an open source implementation of the networking protocol RADIUS, are encouraging users to update to address an authentication bypass found in the server.

The ShadowBrokers announced details on how to subscribe to its Monthly Dump Service, which is available for 100 Zcash.