Intel has issued stable microcode to help protect its Broadwell and Haswell chips from the Spectre Variant 2 security exploits.

Morphisec said that it has detected several malicious word documents – part of a “massive” malspam campaign – that takes advantage of a critical Adobe Flash Player vulnerability discovered earlier this month.

Researchers have found sneaky encoded malware targeting WordPress and Joomla sites that pretends to be ionCube files.

A remote code execution security flaw has been patched in one of the latest versions of Adobe Acrobat Reader DC.

Drupal has patched several vulnerabilities – both moderately critical and critical – in two versions of its content management system platform.

Google Project Zero researchers are warning of two critical remote code vulnerabilities in popular versions of uTorrent’s web-based BitTorrent client and its uTorrent Classic desktop client.

Intel has issued a firmware fix to help its Kaby Lake, Coffee Lake and Skylake processors address the Spectre security flaw.

Researchers are warning users about the Coldroot remote access Trojan that is going undetected by AV engines and targets MacOS computers.

Apple said it is working on a fix for the latest text bomb bug that crashes a number of iOS and Mac apps that display specific Telugu language characters.   

Intel will pay up to $250,000 to researchers who identify bugs more severe than 9.0 on the CVSS scale.