Until yesterday, a popular networking library for iOS and OS X, used by several apps like Pinterest and Simple was susceptible to SSL man-in-the-middle (MiTM) attacks.
Collaboration providers Slack disclosed that a database storing its user profile information has been breached. The break-in has been stopped, and Slack announced that it has implemented two-factor authentication going forward.
FBI Director James Comey pleads with Congress to create a law that would allow law enforcement access to encrypted mobile communications on Android and Apple devices.
A large-scale DDoS attack, apparently emanating from China, has been hammering the servers at GitHub over the course of the last 12 hours, periodically causing service outages at the code-sharing and collaboration site.
Dennis Fisher and Mike Mimoso discuss the news of the week, including the Android app-replacement vulnerability, the Windows privilege escalation bug and the Yahoo transparency report and the company's crypto efforts.
There are a series of vulnerabilities related to credentials and authentication in two of Schneider Electric's HMI products, and an attacker who exploits them may be able to run arbitrary code.
Demonstrating Security ROI to Non-Technical Executives
We know you get it. Today’s cyber threats require advanced security. Our traditional network and endpoint defenses are clearly outmatched and don’t stand a chance at preventing, investigating, or remediating today’s targeted attacks.