The FBI has sent Apple a letter asking the company to unlock two iPhones involved in the recent shooting of three Navy servicemen.
Google Project Zero, the company's security team devoted to finding zero-day vulnerabilities in tech products, announced that it's going to be testing a new disclosure policy in 2020.
Researchers from France and Singapore showed that cheap chosen-prefix attacks against SHA-1 signatures are now possible, and that the attacks are getting cheaper every year.
Brittany Kaiser has started leaking documents to the public that reveal the full breath and depth of the voter manipulation enabled by Cambridge Analytica in various countries.
The Clop ransomware has reportedly evolved to terminate some 663 processes before encrypting files on target systems.
GCHQ reportedly believes a London Stock Exchange outage was caused by a cyberattack, not a glitch in the exchange's software.
The California Consumer Privacy act went into effect January 1. The CCPA is like GDPR for California
The Wall Street Journal reported that the so-called Cloud Hopper attacks from 2016 were more effective than expected.
ProtonMail announced that it's started beta testing an encrypted calendar utility called ProtonCalendar.
Microsoft announced that it seized 50 domains used by Thallium, a threat group believed to operate from North Korea, to disrupt its attacks on targets around the world.
The FBI warned holiday travelers not to rely on free Wi-Fi in a weekly advice column featuring security tips.
Intel's Rapid Storage Technology vulnerability could have allowed persistent malware to exist on Windows systems and bypass of antivirus engines.
Security researchers have found five new security flaws in the Intel NUC firmware, after multiple other NUC vulnerability disclosures were made earlier this year.
A security company discovered that an unsecured Amazon Web Services cloud bucket exposed applications dating back to 2017.
Microsoft removed the Exploit Protection feature from the security baseline for Windows 10 1909 and Windows 10 Server 1909, saying that it caused too many compatibility issues.
Trustwave said yesterday that spammers are using fake Windows Update emails to spread a ransomware called Cyborg to unsuspecting victims.
A new ransomware nicknamed "NextCry," has started targeting NextCloud Linux servers that use older NGINX and PHP software packages.