Troy Hunt has expanded his Pwned Passwords tool with 80 million more passwords, to help users find if their passwords have been compromised.

Drupal has patched several vulnerabilities – both moderately critical and critical – in two versions of its content management system platform.

A recent FBI public service advisory warned of an increase in reports of compromised or spoofed emails involving W-2 forms.

A security researcher found Coinhive code hidden on a Los Angeles Times’ webpage that was secretly using visitors’ devices to mine cryptocurrency.

Google Project Zero researchers are warning of two critical remote code vulnerabilities in popular versions of uTorrent’s web-based BitTorrent client and its uTorrent Classic desktop client.

A new business email compromise campaign targets financial transactions tied to Fortune 500 firms.

Developer Flight Sim Labs is in hot water after acknowledging that it has installed malware in its flight simulator product that it said targets pirate users of its software.

Researchers are warning users about the Coldroot remote access Trojan that is going undetected by AV engines and targets MacOS computers.

Apple said it is working on a fix for the latest text bomb bug that crashes a number of iOS and Mac apps that display specific Telugu language characters.   

Avecto researchers say removing admin rights from users would mitigate many of the threats.