A new downloader, which has been spotted in an array of recent email campaigns, uses anti-analysis techniques and calls in a system fingerprinting module.

Reverse engineering the Toshiba FlashAir SD storage card allowed a researcher to execute remote code – and could’ve allowed him to add other malicious or practical features.

At Black Hat, Google’s Parisa Tabriz discussed how to navigate the complex security environment with long-term thinking and a policy of open collaboration.

Any Chrome user visiting an HTTP website will see an impossible-not-to-notice warning label that the site is “not secure.”

Mozilla is testing a new tool that securely checks to see if users’ accounts have been hacked.

Mobile apps leak personal data via insecure ads that transmit ad-targeting data insecurely.

The Equifax data breach saga so far, a Google HTTPS warnings paper, cryptocurrency mining at the Pirate Bay, and bringing machine learning to passwords are all discussed.

The Equifax data breach saga so far, a Google HTTPS warnings paper, cryptocurrency mining at the Pirate Bay, and bringing machine learning to passwords are all discussed.

Researchers combed through 2,000 Chrome error reports to better classify HTTPS error warnings.

Google began sending out notices to site owners this month who haven’t yet migrated from HTTP to HTTPS warning them that in October their sites will be marked “NOT SECURE.”