Eduard Kovacs

Researchers at Palo Alto Networks have come across a new malware family that appears to have been used by an Iran-based threat actor in...

Researchers have discovered several vulnerabilities in the popular image processing suite ImageMagick, including a serious remote code execution flaw that has been exploited in...

The OpenSSL Project released on Tuesday versions 1.0.2h and 1.0.1t to patch several vulnerabilities that can be exploited for denial-of-service (DoS) attacks, arbitrary code...

A team of researchers from the University of Michigan and Microsoft conducted an analysis of a smart home platform from Samsung-owned SmartThings and discovered...

Nikita Kuzmin, a 28-year-old Russian national who created the notorious Gozi banking Trojan, has been sentenced to time served and ordered to pay nearly...

Google’s May 2016 security update for the Android operating system patches a total of 40 vulnerabilities, including many rated critical and high severity.

A serious vulnerability found in PwnedList could have been exploited to gain access to millions of account credentials collected by the service.

CERT/CC has published an advisory detailing the vulnerabilities uncovered by a researcher in February while trying to find security holes in one of Facebook’s...

Allround Automations has released a new version of its PL/SQL Developer product to address a security flaw that allows man-in-the-middle (MitM) attackers to serve...

Microsoft announced on Friday that it’s offering rewards of up to $15,000 for serious vulnerabilities found in Nano Server.

Cybercriminals stole millions of dollars from Bangladesh’s central bank and they managed to cover their tracks by using custom malware that targeted the SWIFT...

Mobile malware developers are competing for market share by creating highly sophisticated products or low-cost alternatives to existing offerings.An analysis of the mobile malware...

Many developers unknowingly expose sensitive data, including business-critical information, when they publish code containing their Slack access tokens on GitHub.

Researchers discovered a severe cross-domain authentication bypass vulnerability that could have been exploited by malicious actors to gain access to Office 365 accounts, including...

The OpenSSL Project announced on Thursday that it’s preparing patches for several vulnerabilities affecting the crypto library.OpenSSL versions 1.0.2h and 1.0.1t will be released...

A new version of the Network Time Protocol daemon (ntpd) released this week by the NTP Project patches several low and medium severity vulnerabilities.

UPDATED. Cisco’s Talos security intelligence and research group has come across a piece of software that installed backdoors on 12 million computers around the...

Mozilla has patched a total of 14 vulnerabilities, including ones rated critical and high severity, with the release of Firefox 46.

Instead of developing their own hacking tools or buying them from third parties, threat groups have increasingly turned their attention to open source security...

Microsoft has been observing the activities of a cyber espionage group that has leveraged a Windows patching system in attacks aimed at organizations in...