The US Food and Drug Administration hasn't had an OPM-style breach, but it's left plenty of doors wide open, says government watchdog GAO.
Cisco inadvertently introduced a critical vulnerability in its email security appliances by forgetting to remove an internal testing interface from software releases made available to customers.
Building automation products from American Auto-Matrix are affected by a couple of high-severity vulnerabilities that allow remote hackers to compromise the affected system, ICS-CERT warned on Thursday.
Private exploit seller Zerodium has tripled the price of iOS rewards -- and Android is on the radar, too.
The RIG exploit kit recently stopped distributing Tofsee and cybercriminals have decided to use the botnet’s own spamming capabilities to deliver the malware, Cisco’s Talos team reported on Thursday.
While Health Minister Sussan Ley has apologised for the breach in de-identified medical data, Australia's Attorney-General has come under fire for 'rushing' through legislation.
ZERODIUM, a leading zero-day exploit broker, has published its revised bounty figures for the amount it will pay for new zero-days. The highest figure is reserved for iOS - now up to $1.5 million for "fully functional/reliable exploits meeting ZERODIUM's requirements". It was 'only' $500,000 in September 2015.
A researcher who found a slew of vulnerabilities in a popular router says it’s so hopelessly broken that consumers who own them should throw them away.
Zerodium tripled the bounty it offers for an Apple iOS 10 remote jailbreak, boosting the reward to $1.5 million.
Experts challenge Yahoo's assertion that state-sponsored hackers were behind a 2014 breach that resulted in 500 million lost records.
The number of classified data demands remained about the same but covered a larger number of user accounts.
Companies are spending millions on bug bounty programs whose goal is to identify vulnerabilities, but it might be more efficient to take a proactive approach and focus on identifying flaws in the development phase.
Cisco released a patch for a critical flaw that allowed a remote attacker to gain control of one of its email security appliances.
A member of the Syrian Electronic Army hacker group arrested earlier this year in Germany has pleaded guilty to hacking and extortion charges before a judge in the Eastern District of Virginia.
The Vendetta Brothers have mastered the real-world art of organized crime - outsourcing, partnerships, diversification and insulating liability.
It took a month for the company to inform customers by letter.