Once again, Android's much maligned mediaserver is getting patched for critical vulnerabilities.
A misconfigured server is to blame for potentially exposing 3.3 million customers of toy maker Sanrio to risk. The vulnerability has now been fixed.
The Federal Trade Commission comes to terms with Oracle over some bad Java practices. Here's why it sets a good precedent, even as Java security continues to improve.
Zerodium reveals what it pays for a wide range of flaws, and surprisingly, its numbers aren't all that odd.
'Do Not Track' isn't sticking, but that doesn't mean the dream of Internet privacy is over.
Investing in DDoS protection might keep you more secure than paying random to hackers. ProtonMail found that out the hard way.
News Corp's Dow Jones unit admits that it had a data breach that may have impacted up to 3,500 people.
Adobe's August Patch Tuesday fixes another large number of vulnerabilities in Flash, although Adobe claims there are no exploits in the wild for any of the 34 issues.
Adding further insult to injury, the annual Black Hat security awards show "honors" OPM, Hacking Team and Shellshock.
An AM radio might be all that's needed to exfiltrate secrets from a secure location, thanks to Funtenna.
Is blocking Flash outright the right thing to do? Mozilla and Facebook now think so.
Both Kaspersky Lab and Symantec are reporting a surge in attacks from the hacker group that are increasingly difficult to detect.
The SSL certificate forgery request is not branded like Heartbleed, but it's not a trivial matter either.
It's been a tough year for Adobe on the security front. The company fixed another long list of security risks in its Flash Player.
Security expert Alex Stamos makes a big career move—from Yahoo to Facebook--that could have broad impact for the Web.