Eduard Kovacs

An audit has found that the U.S. Nuclear Regulatory Commission’s security operations center is not optimized to protect the agency’s networks, which raises some...

Cisco has released software updates to address several critical and high severity vulnerabilities identified in various networking and security products.

One of the vulnerabilities patched by Microsoft on Tuesday with the first round of security bulletins for 2016 was a Silverlight zero-day which Kaspersky...

Mozilla has awarded a researcher $2,500 for responsibly disclosing a stored cross-site scripting (XSS) vulnerability affecting the company’s add-ons website.

The campaign involving the Android banking Trojan dubbed “SlemBunk” is ongoing and continues to evolve, FireEye reported on Wednesday following a detailed analysis of...

A security hole affecting older versions of Fortinet’s FortiOS operating system allows attackers to gain unauthorized access to vulnerable devices, but the vendor says...

As announced last week, Adobe has released its first series of security updates for 2016 to patch vulnerabilities affecting the company’s Acrobat and Reader...

Europol announced on Tuesday that a couple of individuals suspected of being tied to the DD4BC cybercriminal group have been identified as part of...

A reflected cross-site scripting (XSS) vulnerability on eBay’s website could have been exploited by malicious actors for phishing attacks, a researcher has demonstrated.

Trend Micro Patches Password Manager Vulnerabilities Reported by Google Researcher Trend Micro has rolled out updates to patch easy-to-exploit vulnerabilities found by a Google Project...

General Motors launched a vulnerability disclosure program last week, but the carmaker is currently not offering any rewards.The carmaker has invited researchers who find...

Role of Malware in Ukrainian Power Outages AnalyzedBased on the available information, ICS security experts believe the malware involved in the recent attacks targeting...

Following the discovery of unauthorized code, Juniper Networks announced on Friday that it will replace the random number generation (RNG) technology in its ScreenOS...

The developers of the Drupal content management system (CMS) have started patching the update process vulnerabilities disclosed recently by security firm IOActive.

Operators of the Rovnix Trojan, which has been known to target users in Europe, have now set their sights on Japanese banks, IBM reported...

While investigating activity associated with the RIG exploit kit, researchers at Cisco managed to cause some damage to an operation, but an uncooperative service...

The first security advisory published by VMware in 2016 describes an important guest privilege escalation vulnerability in VMware Tools.VMware Tools includes utilities designed to...

The first series of security updates released by Adobe in 2016 will be for the company’s Acrobat and Reader products.

An infostealer malware family identified by researchers at Zscaler ThreatLabZ leverages compromised digital certificates to avoid being detected by security products.

Romanian law enforcement authorities assisted by Europol this week arrested eight individuals suspected of being part of an international group that used malware to...