Researchers found a critical remote code execution vulnerability afflicting two Schneider Electric products that could give attackers to disrupt or shut down plant operations.

Google is warning a critical vulnerability found in its Media Framework warrants extra attention by security minded Android users.

Morphisec said that it has detected several malicious word documents – part of a “massive” malspam campaign – that takes advantage of a critical Adobe Flash Player vulnerability discovered earlier this month.

Avecto researchers say removing admin rights from users would mitigate many of the threats.

ASUS patched a bug that allowed attackers to pair two vulnerabilities to gain direct router access and execute commands as root.

The team behind the popular open-source framework Electron warns a remote code execution flaw could compromise user privacy.

Thanks to Meltdown and Spectre, January has already been an extremely busy month of patching for Microsoft.

Android receives three remote code execution patches for vulnerabilities rated critical as Google launches a new Pixel/Nexus Security Bulletin.

Netgear patches over a dozen vulnerabilities impacting its routers, switches and NAS devices.

Google’s Project Zero released a proof-of-concept attack against a Wi-Fi firmware vulnerability in Broadcom chips that backdoors the iPhone 7. The flaw was patched in iOS 11.