Insecure module opened the door for attackers to hijack payments

A developer has discovered that malicious apps could exploit the pasteboard to work out a user’s location.

Researchers have found a way to impersonate mobile devices on 4G and 5G mobile networks, and are calling on operators and standards bodies to fix the flaw that caused it.

The Bugcrowd founder discusses the growth of IoT bug bounty programs ahead of a live hacking event at the RSA Conference today

The Bugcrowd founder discusses the growth of IoT bug bounty programs ahead of a live hacking event at RSA Conference today

The Bugcrowd founder discusses the growth of IoT bug bounty programs ahead of a live hacking event at RSA Conference today

Good security programs start with a mindset that it's not about the tools, it's what you do with them. Here's how to get out of a reactive fire-drill mode with vulnerability management.

On Monday, networking hardware maker Zyxel released security updates to plug a critical security hole in its network attached storage (NAS) devices that is being actively exploited by crooks who specialize in deploying ransomware. Today, Zyxel acknowledged the same flaw is present in many of its firewall products.

A new campaign is targeting governments with the ForeLord malware, which steals credentials.

A connected, robotic vacuum cleaner has serious vulnerabilities that could allow remote hackers to view its video footage and launch denial of service attacks.