The attack targets IKE’s handshake implementation used for IPsec-based VPN connections, opening the door for MiTM attacks or for bad actors to access data carried in VPN sessions.

A flaw in Cortana allowed researchers to take over a locked Windows machine and execute arbitrary code.

A high-severity flaw could result in attackers intercepting information, elevation of privilege and/or denial of service.

Several well-rated pet trackers contain flaws stemming from the use of Bluetooth LE, poor certificate handling and more.

A backdoor could be exploited to allow an attacker to manipulate the implants and cause heart problems and even death,

Samba released three security updates, including two related to SMB connections that could be abused by an attacker already on the network to hijack connections and manipulate traffic or data sent from a client.

Bluetooth attack vector, dubbed ‘BlueBorne’, leaves billions of smart Bluetooth devices open to attack including Android and Apple phones and millions more Linux-based smart devices.

Siemens patches four vulnerabilities, including a critical authentication bypass flaw, in its SiPass integrated access control server.

The digital gaming platform Steam was quick to patch a cryptographic issue in its client recently that could have allowed an attacker to read sensitive information sent over its network, take over an account, or view plain-text passwords. Valve, the Bellevue, Wash.-based video game developer that oversees the platform, rolled out new code on its servers...

Apple has had two cracks at patching a vulnerability that allows malicious apps to bypass its OS X Gatekeeper security feature, and twice has taken a shortcut approach to the fix, said the researcher who reported the flaw. The latest measure to address this was released on Thursday and it appears Apple again took steps to...