Drupal developers are urged to patch a bug that allows attackers to take over a site simply by visiting it.

Cisco releases 22 patches as part of its semiannual Cisco IOS and IOS XE software security advisory.

Researcher finds Microsoft’s January Patch Tuesday release included a fix for the Intel Meltdown bug, however the update opened up a new vulnerability.

The city of Atlanta is being extorted for $51,000 in a ransomware attack that occurred early Thursday that impacted several local government departments.

Drupal is giving developers ample time to prepare for an update that patches a “highly critical” flaw because exploits might be developed within hours or days of disclosure.

Netflix opens up bug bounty program to all white hat hackers and ups the ante for bugs to as much as $15,000.

AMD on Tuesday acknowledged several vulnerabilities that had been reported in its Ryzen and EPYC chips, and said that it would roll out PSP firmware patches in the coming week.

Dewan Chowdhury, founder of MalCrawler, talks at SAS about the risks that companies face when securing their industrial control systems and robotics.

Security risk in extensible text editors enable hackers to abuse plugins and escalate privileges.

Threatpost’s Tom Spring sits down with Flashpoint and Akamai to discuss how the two companies worked together to address the 2016 Mirai DDoS attacks.