Facebook is again in hot water after an article alleged it struck deals with device-makers to access users’ data.

A Microsoft Windows vulnerability enables remote attackers to execute arbitrary code – and there’s no patch yet.

An attacker can pick up the profile picture, username and the “likes” of unsuspecting visitors who find themselves landing on a malicious website.

The exposed information includes accounts payable and invoice data, customer support emails, password-recovery mails, links to employee manuals, staffing schedules and other internal resources.

The Honda mistake affects 50,000 users of the Honda Connect App, while UMG exposed corporate keys to the kingdom.

A cyber-attack has brought the websites of both ticket distribution service Ticketfly – and the major venues it services – offline on Thursday.

WHOIS, the searchable “phonebook” of contact data for internet domains, may violate GDPR — or it may not. A lawsuit seeks to find out which it is.

The low-cost malware lowers the barrier of entry for carrying out advanced data exfiltration.

Huawei stamps out four high-severity bugs impacting 20 server models ranging from its XH, RH and CH lines.

Threatpost talks to Tenable CTO Renaud Deraison about the security risks behind smart cities.