A previously unknown bug in Adobe Flash that can be exploited through Microsoft Word has been found after it was used by the BlackOasis hacker group on October 10. Adobe has already released a patch.
A web security expert recently found a bug in Microsoft's Internet Explorer web browser that utilizes HTML tags that potentially reveal a user's browsing habits to an unauthorized third party.
A new malware that attacks devices via Bluetooth has been discovered by a security firm. Without the need to pair, it can spread itself onto other devices without the victim's knowledge.
A vulnerability in Windows OLE is being exploited by cybercriminals. The attack makes use of an innocuous-looking PowerPoint attachment, which in turn downloads malware to spy on users.
A new vulnerability that impacts Linux systems has been discovered by a researcher. The vulnerability, which affects the GNOME Files file manager, has already been patched by the Debian Project.
Security researcher Leigh-Anne Galloway has disclosed a massive flaw in Myspace's account recovery page, that allows anyone to gain access to any account just by knowing the person's birthday.
Researchers at Core Security have found multiple vulnerabilities in Kaspersky Anti-Virus for Linux File Server that would allow attackers to gain root access. The company has since issued a fix.
A new ransomware attack is currently causing havoc with multiple organisations across Europe, including banks, airlines, utilities and airports. 'Petya' is largely concentrated in Ukraine and Russia.
Google has revealed yet another vulnerability in Windows - because Microsoft failed to fix it correctly - that can reportedly allow locally authenticated attackers to access kernel memory space.
A massive swath of internal Microsoft data has been leaked online, containing 32TB of internal builds for Windows 10 and the source code for some of the core systems for the operating system.
Microsoft has claimed that its new Windows 10 S operating system is protected from all known ransomware. Matthew Hickey, a security researcher was able to prove it wrong in just three hours.
Virgin Media, one of the UK's largest ISPs, is encouraging hundreds of thousands of customers to change their passwords after a security vulnerability was discovered on its Super Hub 2 home router.
Microsoft has quietly issued a fix for a critical vulnerability in Windows Defender's Malware Protection Engine. The problem was discovered by the same Google researcher who found an earlier exploit.
A new Android exploit called 'Cloak and Dagger' allows attackers to add an invisible UI layer on your screen, allowing them to control your phone, log keystrokes and much more without your knowledge.
The highly infectious ransomware known as 'Wannacry', which has infected thousands of computers across the world, has evolved to combat a temporary solution discovered by researchers.
A new ransomware called Wannacry/Wanna has affected over 57,000 computers in over 70 countries. The attack has hampered organisations across the world and encrypts all files pending a ransom payment.
A flaw in Microsoft's in-house browser for Windows 10, Edge, has been discovered by a security researcher. The vulnerability would allow hackers to steal your cookie and password data.
Microsoft has issued an update to fix a flaw in its Malware Protection Engine. The flaw would have allowed for an attacker to use remote code execution, therefore putting many users at risk.
A Google security researcher has reportedly discovered a "crazy bad" vulnerability in Windows, which can easily spread. Although full details aren't available yet, a report is expected to follow soon.
It was revealed via an advisory that Intel has finally patched a security vulnerability which has been around since 2008. It affects the firm's management solutions, firmware versions 6 through 11.6.
Security researchers over at McAfee have found that attackers are exploiting an unpatched vulnerability within Microsoft Office, which allows for full control to be taken of the victim's PC.
An exploit within the web platforms of WhatsApp and Telegram was found by Check Point Security, which could allow hackers to take full control of your account just by sending an innocent-looking file.
After initial silence on the issue, Google has now put out a statement regarding the alleged CIA exploits exposed by WikiLeaks. Google says many of the issues in Chrome and Android have been fixed.
Researchers have discovered a critical issue in the popular web application framework and patched it a couple of days ago. But since then the number of attacks targeting it have gone up dramatically.
Google has publicly revealed yet another unfixed vulnerability in Microsoft's products. This time, the flaw affects Edge and IE, causing the browsers to crash along with arbitrary code execution.
Yesterday's Patch Tuesday saw numerous bug fixes and additions to many of Microsoft's operating systems. However, breaking with tradition, Microsoft released a very small number of security fixes.
Yesterday's Patch Tuesday saw the launch of a new cumulative update for Windows 10, as well as a number of security patches; they fixed critical flaws that were already being exploited in the wild.
A security researcher has found a vulnerability in Google's login pages, which could be manipulated for malware download. However, Google did not consider the issue to be alarming.
The Vine team at Twitter had a domain that allowed anybody - without authentication - to download their images for the Vine webapp. The vulnerability has since been fixed.
Old Intel code still present in UEFI firmware used by many machines has left devices open to attacks. Lenovo admits that the Secure Boot-disabling vulnerability's scope of impact is industry wide.
A security researcher has found an exploit-chain that can be used on Android devices with Qualcomm chips to break into the device's disk encryption. This exposes all of the user's data.
A zero-day vulnerability is being exploited in the wild across all platforms, as Adobe's engineers scramble to put out a patch this week. This is the third such instance in as many months.
A credible zero-day vulnerability is being auctioned off on criminal websites. The exploit can be used on all versions of Windows including 10 and can even supposedly bypass Microsoft's EMET suite.
Microsoft and Adobe are warning users against two zero-day vulnerabilities that are being used in the wild. Microsoft already patched its software with yesterday's Patch Tuesday.
The Lenovo Solution Centre, pre-bundled on almost every Lenovo PC, has been found to have a flaw that could put affected PCs at risk of attack, by allowing elevated privileges on the machine.
A severe vulnerability was recently discovered that affected Apple's OS X and iOS operating systems. It could allow for an attacker to execute arbitrary binaries and even load unsigned kernel code.
Security researcher, Chris Vickery, managed to find a publicly available server which held the details of all US voters. Luckily, public access to the database has now been cut off.
An independent researcher has uncovered a problem with the Android and browser versions of WhatsApp. An attacker can send around 4,000 smileys to their target which causes the victim's app to crash.
Recently, it was discovered that Home Hub 1000 and 2000 series routers supplied by Bell Canada were susceptible to attack via its Wi-Fi interfaces due to a flaw involving WPS.
The latest batch of security patches is now out from Microsoft and a number of them address critical vulnerabilities. As such we recommend you upgrade as soon as possible to keep your machine safe.