Security researchers at Pen Test Partners have found a privilege escalation flaw in the much-maligned Lenovo Solution Center software.

Decompression could give modern web apps a touch of the bends

Tech giants clamp down on disinformation; Facebook gives users more control over their data; and the world’s longest streaming webcam is taken offline

Knowing the methods of the attacker, as laid out in the federal indictment, allow us to prevent similar attacks.

If the phishing page looks OK, and it has an HTTPS padlock, how are you supposed to spot phishes these days? Read our tips...

‘Some of the attackers seem to have access to high levels of funding, innovative tactics, and military-grade malware’

Multiple celebs fell for this one. Don't believe them - it's as much as a hoax as it's always been.

Cisco just issued some urgent patching homework in the form of 31 security fixes, 4 of them for flaws rated ‘critical’.

On Tuesday of this week, one of the more popular underground stores peddling credit and debit card data stolen from hacked merchants announced a blockbuster new sale: More than 5.3 million new accounts belonging to cardholders from 35 U.S. states. Multiple sources now tell KrebsOnSecurity that the card data came from compromised gas pumps, coffee shops and restaurants operated by Hy-Vee, an Iowa-based company that operates a chain of more than 245 supermarkets throughout the Midwestern United States.

Microsoft remains the favorite brand to spoof in phishing campaigns, but more attackers are impersonating Facebook.