Security news, trends, analysis and practical advice


uber app iphone

California bill would secure data of users using ride-hailing firms

A proposed bill in California would put curbs on the data Uber and other ride-hailing companies can collect and share.

Whistleblowers are at risk using U.S. gov't sites to report fraud

More than two dozen U.S. government websites should be urgently upgraded to use encryption to protect whistleblowers, the ACLU said.

sony pictures booth

Update: Wikileaks publishes searchable database of hacked Sony docs

Wikileaks has published a searchable database of thousands of emails and documents from Sony Pictures Entertainment that were leaked late last year.

information security

Experts boost threat level, call for patching critical Windows bug ASAP

Security experts today called for Windows users to immediately patch one of the 26 vulnerabilities Microsoft disclosed on Tuesday.

fotolia 78136858 s

Cybersecurity, data science and machine learning: Is all data equal?

Among the many possible applications of machine learning to cybersecurity data, classifier models can be built to identify cyberattacks and abnormal behaviors. I will discuss the relative importance of the different type of data that...

broken link breaching weakest link connection vulnerability 000004213740

Data breach notification bill could weaken consumer protections

Legislation that requires businesses across the U.S. to notify customers after a data breach is headed toward a vote by the House of Representatives.

malware bug virus security magnifying glass detection

Dropbox to pay security researchers for bugs

Dropbox said Wednesday it will pay rewards to independent researchers who find software flaws in its applications, joining a growing list companies who see merit in crowdsourcing parts of their security testing. The popular...

Freeze it! How to use Windows steady state

You can lock down end-users' laptops and desktops with a minimum of fuss. Here's how.

VMware helps CIOs tunnel their way to more secure mobile apps

VMware's goal is to make it easier for administrators to control what apps and resources mobile users can access.

Adobe patches vulnerabilities in ColdFusion, Flex and Flash Player, including a zero-day flaw

Adobe Systems released security patches for ColdFusion, Flex and Flash Player, the latter addressing a flaw for which an exploit is already available.

PEBKAC and ID10T error

90% of security incidents trace back to PEBKAC and ID10T errors

90% of security incidents are still caused by PEBKAC and ID10T errors, according to Verizon's 2015 Data Breach Investigations Report. Phishing attacks are a prime example of how the problem exists between keyboard and user as it takes...

depositphotos 32783877 s

Microsoft releases 11 critical updates and fixes critical HTTP flaw

This month Microsoft has released 11 updates, with four rated as critical and the remaining seven rated as important. At first glance, this looks like another large update release from Microsoft, similar to last month's massive...


With latest patches, Oracle signals no more free updates for Java 7

Oracle released patches for 98 security issues across a wide range of products, including 14 in Java. This marks the last free patch for Java 7, and users are being encouraged to upgrade to version 8.

airplane interior

U.S. sounds alarm on hacking of passenger jets, air traffic control

Millions of air passengers could be at risk if more isn't done to prevent hackers targeting aircraft and air traffic control systems, the U.S. government said on Tuesday.

band-aid patch bandage

Microsoft Patch Tuesday: The patches keep coming

For Microsoft, the vulnerabilities appear to be surfacing more quickly than ever before.

091514 radioshack

RadioShack presses ahead with plan to sell customer data

Sale of the personal data was withdrawn from a previous auction.

login page with login and password forms 000011952367

Windows vulnerability can compromise credentials

A vulnerability found in the late 1990s in Microsoft Windows can still be used to steal login credentials, according to a security advisory.

That's not the hat I was wearing when you asked

This pilot fish is the go-to guy for antivirus issues at his company, and he's painfully aware that there are a few gaps in the protection -- and one very special gap in particular.

Load More