The Android vulnerability known as Stagefright is back in the limelight. Stagefright is a bug, or more accurately a series of similar bugs, in an Android programming library called libstagefright. Libstagefright is part of the operating system that handles media files such as movies. If you receive an MMS (Multimedia Messaging Service) message that links...

Self-driving cars may be the future of transportation – it’s possible that eventually they could be safer than vehicles with human drivers. But autonomous vehicles are going to need more and better defenses against the threat of hackers and cyberattacks. Uber has just hired a pair of renowned car hackers to help the alternative cab company develop security...

Thanks to Gabor Szappanos of SophosLabs for his behind-the-scenes work on this article. SophosLabs has drawn our attention to a new wave of malware attacks using a recent security bug in Microsoft Word. The bug, known as CVE-2015-1641, was patched by Microsoft back in April 2015 in security bulletin MS15-033. The vulnerability was declared to...

An attacker with access to security-sensitive information about the Firefox web browser went unnoticed for up to two years, putting hundreds of millions of users at risk. The attacker was able to spy on highly sensitive information by gaining access to a privileged account on Bugzilla@Mozilla, the bug tracking software the Mozilla corporation uses to...