A variant of the Nymaim dropper has surfaced, and it includes new delivery methods, obfuscation techniques, and the use of PowerShell to download payloads.

The Article 29 Working Party, an EU privacy coalition urges WhatsApp to clarify that user information shared between the company and Facebook is compliant with data protection laws on the books in Europe.

In a move to bolster security for the Chrome browser, Google sets a date for making Certificate Transparency mandatory for website owners.

Apple addressed vulnerabilities in iTunes and iCloud for Windows, and Xcode Server on Thursday.

Cisco warns of 16 flaws in its latest security bulletin, mostly impacting its Cisco AsyncOS software used in its Email Security Appliances.

Microsoft announced it has extended a feature in Office 2016 that protects against malicious macros to Office 2013.

Attackers can leverage a design weakness in all versions of Windows to carry out code injection attacks that bypass detection by security software.

Joomla fixed two critical issues in the content management system and is strongly encouraging users to update their sites immediately.

Apple on Monday rolled out dozens of patches for nearly all of its recently released Sierra operating systems, OS X, iOS 10.1, watchOS, and Apple TV’s tvOS, along with fixes for Safari.

An installer purporting to be Microsoft Security Essentials is malware that can lead to a support call scam.