Facebook announced this week that its paid out more than $5 million to 900 researchers in the five years since it implemented its bug bounty program.

A vulnerability in Cisco’s meeting server software allows a remote attacker to masquerade as legit user.

Open Whisper Systems announced that it has added the disappearing messages feature to the Signal encrypted messaging app.

Mike Mimoso talks to Cigital CTO and software security pioneer Gary McGraw about the latest results pulled from the Building Security In Maturity Model (BSIMM).

Microsoft released 10 security bulletins on Patch Tuesday that included patches for five zero day vulnerabilities under attack that had not been publicly disclosed until today.

The IoT botnet behind the some of the largest publicly recorded DDoS attacks is flooding its targets with HTTP traffic in Layer 7 attacks.

Networking giant Cisco issued five security bulletins this week with two critical bugs allowing remote execute code.

Mac security researcher Patrick Wardle released a tool called OverSight that monitors when malware may be recording a webcam or audio session on a macOS machine.

Researchers estimate thousands of ecommerce sites are under attack by a single threat actor that has infected servers with a web-based keylogger.

A NSA contractor working for Booz Allen Hamilton was arrested and charged with stealing secret documents from the U.S. spy agency.