Cisco warns of 16 flaws in its latest security bulletin, mostly impacting its Cisco AsyncOS software used in its Email Security Appliances.

Researchers find a vulnerability in industrial control system manufacturer Schneider Electric’s flagship software for managing and programing industrial controls.

Ten percent of the 550,000 IoT nodes in the Mirai botnet are involved in ongoing DDoS attacks against DNS provider Dyn and others.

DNS providers Dyn suffered a DDoS attack this morning that affected many of its major customers including Twitter, Spotify, Github and others. Services have been restored as of 9:36 a.m. today.

Sierra Wireless warns that its AirLink gateways are being infected by the Mirai malware, and urges customers to change default passwords on devices.

Mike Mimoso and Chris Brook discuss the news of the week, including the nuclear power plant ‘disruption,’ the StrongPity APT group, and the proliferation of IoT botnets.

A vulnerability in Cisco’s meeting server software allows a remote attacker to masquerade as legit user.

Mike Mimoso talks to Cigital CTO and software security pioneer Gary McGraw about the latest results pulled from the Building Security In Maturity Model (BSIMM).

The head of an international nuclear energy consortium said this week that a cyber attack caused a ‘disruption’ at a nuclear power plant in the last several years.

In Cigital’s seventh annual Building Security in Maturity Model report, cloud, agile software development and IoT factor into maturing secure software movement.