A blogger based in Beijing has uncovered a vulnerability on how Microsoft account identifiers are retrieved in plain text; meaning when you visit Outlook.com or Calendar you could be tracked.
Hands-on with the Microsoft Surface Book and Surface Pro 4
Review: Tesoro Excalibur Spectrum, a colorful Mechanical keyboard
Hands-on: Lumia 950, 950 XL, 550 and the Continuum Dock
lumia 950 xl
Here's the recap for Microsoft's Windows 10 Devices event in NYC
Editorial: Surface Pro 4 excites but leaves room for improvement
surface pro 4
A new report claims that a new set of vulnerabilities, dubbed Stagefright 2.0 in the Android OS may be affecting more than a billion users and every device is susceptible to malicious attacks.
A lock screen bypass vulnerability has been discovered in Android version 5.0-5.1.1. The bypass allows an attacker to gain full access to a locked device even when encrypted.
Sony is rolling out new firmware (build 14.6.A.0.368) for some Xperia handsets - and unlike a similar update it pushed out last week, this one includes a fix for the Android Stagefright vulnerability.
It is not uncommon for Microsoft to issue security updates for its products. The latest update patches a vulnerability for Internet Explorer that spans all supported versions.
Researchers have outlined a vulnerability in the way permissions for support apps are installed by most OEMs on their Android devices which can allow for total control of a device.
After Google committed to providing monthly security updates for Nexus devices, Samsung and LG have now said that they will do the same, releasing regular patches for their Android phones and tablets.
A malicious exploit hidden in an advertisement on a Russian site allowed access to Firefox users' files and could upload data to an external server; users are advised to upgrade to new version.
The vulnerability lets an attacker take control of any device running Android 2.2 onwards using multimedia content - but while Google has had a patch since April, 95% of devices remain unprotected.
Adobe has released a security patch for its Flash Player to fix a critical security vulnerability that has apparently been exploited by a Chinese cyber-espionage group for several weeks.
Samsung has issued a statement and will begin rolling out an update for those affected with the Galaxy keyboard vulnerability. The vulnerability is thought to have affected over 600 million devices.
A recently-discovered vulnerability in Apple's Macintosh computers allows hackers to dig deep into your computer undetected and rewrite how your machine works.
In an effort to patch any possible vulnerabilities, United Airlines has launched a program which will reward up to 1 million free miles to anyone who finds a bug or security flaw in their website.
A Russian coder recently found a vulnerability in YouTube which allowed him to delete any video on the service, he also said that he was "tempted to clean up Bieber's channel" following its discovery.
Facebook has paid $12,500 to Laxman Muthiya, an Indian Security researcher for reporting a major vulnerability which could allow hackers to delete all the public photos on the social platform.
Details of another Windows vulnerability have been published by Google before Microsoft was able to release a patch, which can now be more widely exploited by anyone as a result of its disclosure.
The POODLE bug knows no bounds and has even affected the MetroTwit app, and as a result, the developers have decided to issue a hotfix for the retired Twitter client - but this is probably a one-off.
A Copenhagen-based developer has discovered a vulnerability that allows telephone numbers in Safari pages on the iPhone to automatically place calls, to any number including the expensive ones.
Multiple Mediatek-based smartphones, including the Acer Liquid E2, are automatically restarting themselves upon receiving a plain equals sign ("=") in an SMS message. However the fix is fairly simple.
Microsoft has updated the Malware Protection Engine found in many of its security programs such as Windows Defender, Security Essentials and Forefront Security, to patch a serious vulnerability.
WordPress users could be left vulnerable over unsecured networks due to unencrypted cookies when logging in to the website, which means possible exposure of private emails, user settings, and more.
A security vulnerability found in Microsoft Word (which was patched last month) has been used by hackers to target government and educational institutes in Taiwan who failed to update their systems.
A newly-discovered bug in iOS 7 has revealed that any email attachments sent from an iOS 7 device will not properly encrypt, leaving files potentially vulnerable to attacks.
A new report has detailed a serious zero-day security vulnerability called "Heartbleed" affecting the OpenSSL cryptographic library caused due to a programming error and a fix is being worked on.
A backdoor has been discovered affecting the modem of various Samsung devices, allowing remote and indiscriminate read/write/delete access to the device's storage
A new security report from Secunia states that Windows 8 is the most vulnerable Windows OS on the market but it's not all Microsoft's fault, Adobe's Flash player is a big contributor to this issue.
Adobe has issued an immediate update to the Flash player plugin after a report of a serious vulnerability, targeting public policy websites, was published by security researchers at FireEye.
A zero-day vulnerability present in Windows systems, which allowed users to install programs and modify data, was recently used to target over 28 embassies in the Middle Eastern region.
A weakness in the Pinterest social network made it possible for someone to modify a URL and view the email address associated with any account, within minutes. Pinterest claims this to be fixed.
Two supposedly secure email services, Silent Email and Lavabit, closed within a matter of hours of each other, with concerns about government pressure over 'high-profile' users of the services.
Microsoft has disclosed that some Windows systems have been attacked via a critical flaw in the OS's code. The vulnerability was made public back in May by a Google engineer.
Apple has plugged a gap in their App Store security, 6 months after a Google security researcher alerted them to the problem which could allow hackers access to sensitive information.
Oracle's most famous product, Java, has a few more woes to add to its past week after a Polish security firm discovered two more potential weaknesses hackers could use in future attacks.
Another day, another Java security flaw. To quote the movie Wargames, "the only winning move is not to play." In this case, that means to constantly update Java and use it only if absolutely necessary
The nice person who discovered, and then reported without giving away too many details on how to reproduce the flaw, has confirmed that Microsoft are already working on a fix.
Lulz Security (LulzSec), a security group who are quickly gaining ground for some of their antics have warned the British NHS (National Health Service) that its network infrastructure is at risk and has the potential...
A security researcher has discovered a vulnerability in all versions of Internet Explorer, including IE9, on all versions of Windows. This vulnerability allows hackers to steal login information for any sites requiring passwords. The theft...
It seems that companies are losing our data left and right, making it difficult for consumers to protect their identity. Most web site logins consist of nothing more than a username/password combination, and many...
Adobe has released updates to Adobe Acrobat and Reader, fixing a critical vulnerability discovered last week in Adobe Flash 10.2. The vulnerability, which has since been fixed in a Flash update, could potentially allow an...
Dropbox is a popular tool used to sync files between multiple computers and devices that a user owns. A user installs the software, designates a folder to keep syncronized, and is able to access those...
Microsoft is set to release a record breaking Patch Tuesday that contains 17 bulletins, fixing 64 vulnerabilities, according to the advanced notification. Microsoft patches security holes and vulnerabilities in all of their software products on...
On the second day of the pwn2own competition in Vancouver B.C., hackers took to their devices and showed off what they have secretly been working on. After a successful first day, where we saw Safari...
A blog post and video surfaced today showing how an attacker could quickly and easily gain administrative privileges to your Blogger account. The video does show off some complex techniques, but could easily be duplicated...
Microsoft has issued an advanced security notification for the month of March 2011. Patch Tuesday, as nicknamed by Microsoft, where the company releases the latest security patches for Windows, Office, Internet Explorer and other Microsoft...
Microsoft has just issued an advanced security notification for the month of February 2011. Patch Tuesday, as nicknamed by Microsoft, where the company releases the latest security patches for Windows, Office, Internet Explorer and other...
Microsoft has warned of a vulnerability found across the range of desktop and server Windows offerings that could potentially allow an attacker to run malicious scripts through a web page. The vulnerability, which was first reported...
The second Tuesday of every month, Microsoft issues the latest security and vulnerability patches for Windows, Microsoft Office, Internet Explorer and a variety of other software products. Microsoft Security Bulletin Advance Notification, or better known...
Winrumors has reported that a new 0-day vulnerability affecting Windows XP, Vista and 7 has been discovered. The vulnerability resides in win32k.sys, "the kernel mode part of the Windows subsystem." This exploit allows user priviledge...
NOTE: Neowin does not condone or support stealing content through exploiting software vulnerabilities. The process by which the below can be achieved will not be published on this website and may not be posted in...