It was a week of patches - from a severe Linux kernel flaw to a new 'wormable' Windows bug, here's a roundup of the week's top stories.

Ogusers[.]com -- a forum popular among people involved in hijacking online accounts and conducting SIM swapping attacks to seize control over victims' phone numbers -- has itself been hacked, exposing the email addresses, hashed passwords, IP addresses and private messages for nearly 113,000 forum users.

Hard-to-fix flaw cause >25,000 routers to leak >756,000 unique MAC addresses.

Linksys said it fixed flaw in 2014. Researcher Troy Mursch disagrees.

A piece of 'art' currently up for auction features six separate types of malware running on a vulnerable computer.

A cross-site scripting flaw in a popular WordPress plugin enables an unauthenticated attacker to insert JavaScript payloads into impacted websites.

Microsoft's decision to patch unsupported machines for the critical CVE-2019-0708 flaw is a reminder that XP, 2003, and other older versions of Windows still run in some enterprises.

The decision to pay a ransom in the case of a ransomware attack can be a complex one for businesses.

The importance of reading the network tealeaves of a company’s network traffic to head off an attack.

Endpoint protection specialist files to list on NASDAQ