The July Android Security Bulletin patches 11 critical remote-code execution bugs including one dubbed ‘Broadpwn’ that impacts both Android and iOS devices.

Citizen Lab investigates the targeting of Chinese language news websites in a phishing attack that leveraged the NetWire remote access Trojan.

The glaring privacy issues tied to an online health and beauty retailer allows customers to log-in to their user accounts with just their email address – no password needed.

HackerOne released its first report on its bug bounty program, and reveals an industry shift toward enlisting hackers for better cybersecurity.

The good news is the cost of a data breach is down double-digits, the bad news the size and scope of breaches is creeping up.

Researchers at CyberArk have developed a bypass for Windows PatchGuard that leverages Intel’s Processor Trace (Intel PT) technology to execute code at the kernel.

Former AT&T CSO, Ed Amoroso, says government needs to shift from talk to action when it comes to cybersecurity.

A string of data thefts targeting North American mining companies and casinos are extorting as much as $620,000 from victims.

The latest dump from Wikileaks alleges the CIA installed custom router firmware on unsuspecting targets in order to spy on internet activity.

Researchers have neutralized the latest strain of the Jaff ransomware, releasing a decryption tool for unlocking files.