• Yahoo breach calls into question detection and remediation practices
  • MobileIron: Enterprises aren't focusing enough on mobile threats
  • SWIFT security controls to be mandatory by 2018
  • ICANN grinds forward on crucial DNS root zone signing key update
  • Latest iOS 10 release includes password-verification flaw
  • Powerful DDoS attacks leveraging IoT devices hit several companies
  • Yahoo breach leaves 500 million accounts compromised
  • FBI ransomware alert: Don't pay; report, defend against attacks
  • Symantec patches two more flaws after Google Project Zero discoveries
  • Anomaly detection in new SWIFT antifraud reports may fall short
  • Shadow Brokers' Cisco vulnerability exploited in the wild
  • NAND-mirroring iPhone hack would have made the FBI's job much easier
  • Most popular exploit kits target Flash, Java and IE
  • Google Project Zero Prize competition set to tighten Android security
  • MySQL vulnerability disclosed, status of patches uncertain
  • Law enforcement hacking declared search under Fourth Amendment
  • Monthly Windows rollup: Simplification or loss of patching control?
  • September 2016 Patch Tuesday: Browser security takes center stage
  • Burr-Feinstein bill still looks to force companies to break encryption
  • RSA: No major changes expected following Dell-EMC merger
  • Google to tweak Chrome browser security in 2017, flag HTTP as insecure
  • OPM breach report blames leadership inaction for data loss
  • Intel Security sale finalized, McAfee brand resurrected
  • Experts split on whether we're in a cyber arms race or open conflict
  • President Obama urges focus on non-state actors, not cyber arms race
  • The original hacker, Guccifer, sentenced to 52 months in prison
  • Apple patches Pegasus spyware bugs in OS X, Safari
  • FBI wants 'adult' conversation about 'going dark' encryption debate
  • SWIFT discloses new attacks and bank thefts in private letter
  • Voter data breach leads to questions of tampering and state security
  • Pegasus iOS exploit uses three zero days to attack high-value targets
  • Ransomware decryption tool from Intel and Kaspersky quenches Wildfire
  • NSA's SNMP exploit cyberweapon affects all Cisco ASA software
  • Questions swirl around Shadow Brokers' cyberweapons dump
  • Hospital cybersecurity failing to encrypt transmitted health records
  • Leaked Cisco security vulnerability found in NSA exploit stockpile
  • Fallout from Equation Group cyberweapons leak continues to mount
  • Dell: Machine learning security hard to explain, harder to beat
  • Google AdSense malware silently delivers to Android users
  • SWIFT banking execs admit to ignoring security before hacks
  • PGP collision attack on Linux creator highlights flaws with short IDs
  • Windows Bash could open the door to more Linux-based attacks
  • New Vawtrak Trojan variant leverages SSL pinning, HTTPS
  • Equation Group cyberweapons auctioned off; WikiLeaks promises release
  • DNC forms cybersecurity advisory board after breach
  • Windows Secure Boot broken after Microsoft leaks golden key
  • White House aims to secure open source government programs
  • Browser vulnerabilities, Office flaws lead August 2016 Patch Tuesday
  • More DDoS DNS amplification attacks use SSDP than NTP
  • Bluetooth LE security hit with GATTack at Black Hat
  • Oracle MICROS breached, password reset recommended
  • Security of HTTP/2 protocol takes big hit at Black Hat 2016
  • Apple starting its own bug bounty program with big rewards
  • Government data requests have little legal backing say experts
  • EMV cards, PIN pads vulnerable to man in the middle attacks
  • Black Hat 2016 keynote: We need sharing, not competition, in security
  • Barclays replaces passwords with voice authentication
  • Android security boosted with memory protection of Linux kernel, more
  • White House unveils federal cybersecurity plan and attack rating system
  • Researchers uncover malicious probing of Tor hidden services
  • Dell: Signature-based detection must give way to machine learning
  • LastPass security flaws put passwords at risk; patch rolling out
  • KeySniffer vulnerability enables eavesdropping on wireless keyboards
  • Experts say NIST deprecating SMS 2FA is long overdue
  • Oracle CPU fixes record crop of critical flaws in quarterly patchfest
  • DNS DDoS attack shuts down Library of Congress websites for three days
  • FBI accused of avoiding FOIA requests in the name of security
  • Flaw in ASN.1 compiler potentially critical, hard to find
  • Responsible disclosure of latest named vulnerability, 'httpoxy'
  • John Curran explains benefits of IPv6 connectivity progress
  • FDIC found hiding multiple APT attacks and more from investigators
  • EU member states approve EU-U.S. Privacy Shield data flow framework
  • John Curran explains the importance of IPv6 connectivity
  • New 'ransomware' variant proves there's no honor among thieves
  • Pokémon GO reveals full account access flaw for Google authentication
  • July 2016 Patch Tuesday is more about Adobe Reader bugs than Microsoft
  • SWIFT banking security adds a dedicated cyberintelligence team
  • Avast purchase of AVG shows uncertainty in antivirus market
  • Microsoft calls for independent body to address cyber attribution
  • New EU GDPR privacy regulation set to take effect in 2018
  • Android full-disk encryption is flawed enough for government work
  • FBI says Hillary Clinton's email setup was irresponsible, not illegal
  • House Homeland Security Committee proposes encryption debate commission
  • Enterprise encryption strategies rise as firms' use of encryption grows
  • Nearly 10 million hospital patient records for sale on dark web market
  • Google Project Zero exposes more critical Symantec vulnerabilities
  • Intel reportedly considering selling its security business
  • NASCAR race team hit with ransomware attack
  • Cyber attribution relies on human intelligence, not technical info
  • FBI surveillance access with National Security Letter unchanged, for now
  • Activists, DOJ spar over Rule 41 changes to enhance FBI searches
  • Acer's e-commerce website hit by a customer data breach
  • CIA chief denies encryption backdoor effect on U.S. business
  • DNC hack raises questions about cyber attribution methods
  • FBI facial recognition systems draw criticism over privacy, accuracy
  • Russian hacker arrests linked to ransomware and exploit kit shutdowns
  • SAP vulnerability, reported in 2010, finally patched
  • Adobe Flash zero-day overshadows June 2016 Microsoft Patch Tuesday
  • Ransomware attack, education highlight 2016 Information Security Summit
  • Symantec acquisition of Blue Coat shakes up security industry
  • More