Universal Plug and Play networking protocols can be exploited to bypass DDoS mitigations.

Adobe has issued a round of higher priority patches less than a week after its Patch Tuesday updates last week.

A phishing scam fooled victims by claiming to be Apple and scooping up personal details – including financial information and Apple account information.

Researchers maintain Microsoft’s vaunted Arbitrary Code Guard in the Edge browser can’t stop hackers from mounting attacks.

The Panda banking trojan, a spin-off from the infamous Zeus malware, is widening its net to attack more than just financial services targets, as seen in three ongoing campaigns discovered in May.

The GandCrab ransomware continues to virulently spread and adapt to shifting cyber-conditions, most recently crawling back into relevance on the back of several large-scale spam campaigns.

The leak of point-of-sale malware source code is a double-edge sword to researchers who view it as boon to research, but a headache when it comes to inspiring future variants and attacks.

Nigerian-based cybercriminals are growing more dangerous as they add sophisticated tools to their arsenal,  including complex remote access trojans, a new report reveals.

In total, Microsoft’s May Patch Tuesday roundup included 68 security patches, with 21 listed as critical, 45 rated important and two listed low in severity.

The flaws would leave the enterprise devices helpless to a range of remote threats, including the charms of the Reaper IoT botnet.