Visit/blockchain/32753/critical-fund-stealing-flaw-delays-major-ethereum-upgrade
Ethereum cryptocurrency logo engraved on broken glass to show a security failure
blockchain

Critical flaw delays major Ethereum upgrade

The Constantinople Upgrade has been delayed after developers became aware of the issue one day before it was scheduled
16 Jan 2019
Visit/security/32732/nasa-employee-data-exposed-for-at-least-three-weeks-due-to-misconfigured-web-app
Space walk
Security

Misconfigured app exposed NASA data for at least three weeks

Names and email addresses accidentally made public in the second major security scare in as many months
14 Jan 2019
Visit/security/32662/adobe-releases-emergency-fixesacrobat-reader
Adobe Logo
Security

Adobe releases emergency fixes for two critical flaws

The bugs let an attacker execute arbitrary code and allowed privilege escalation via six iterations of the software
4 Jan 2019
Visit/security/32572/the-scariest-security-horror-stories-of-2018
phishing
Security

The scariest security horror stories of 2018

From data breaches to hardware vulnerabilities, these are the most embarrassing security blunders of the year
25 Dec 2018
Advertisement
Visit/cyber-warfare/32603/twitter-flags-suspected-state-sponsored-attack-after-unusual-activity-from-china
cyber warfare

Twitter suspected potential state-sponsored attack

Malicious actors exploited two bugs with the platform's support form to gather hidden information, including phone numbers
18 Dec 2018
Visit/security/32546/second-google-api-bug-exposes-private-data-of-525-million
Security

Second Google+ API bug exposes private data of 52.5 million

Google says it has expedited the platform closure by 4 months as a result
11 Dec 2018
Visit/zero-day-exploit/32294/researchers-break-edge-with-zero-day-remote-code-exploit
Hacking on keyboard
zero-day exploit

Researchers ‘break’ Edge with zero-day remote code exploit

Proof-of-concept shows researchers opening the Chrome landing page from Edge via Firefox
5 Nov 2018
Visit/security/32264/stuxnet-is-back-iran-admits
malware
Security

Stuxnet is back, Iran admits

The infamous malware is back, and it's "more violent, more advanced and more sophisticated" than ever
1 Nov 2018
Visit/data-breaches/32023/facebook-hack-three-million-eu-users-affected-by-breach
The Facebook logo photographed with rope laid over it as if to resemble imprisonment
data breaches

Three million EU users affected by breach

Data regulator confirms the number of European users affected in the massive Facebook data breach
22 Oct 2018
Visit/bugs/32164/aws-freertos-vulnerabilities-could-crash-iot-devices-warn-cyber-security-researchers
bugs

AWS FreeRTOS vulnerabilities could crash IoT devices

Flaws in IoT operating system could allow hackers to compromise devices and leak data
22 Oct 2018
Advertisement
Visit/bugs/32143/the-facts-of-the-y2k-bug-and-why-it-was-nothing-like-brexit
bugs

The facts of the Y2K bug and why it was nothing like Brexit

Those tasked with fixing the millennium bug reject the idea that it was a load of hysteria over nothing
19 Oct 2018
Visit/bugs/32095/whatsapp-fixes-video-call-security-bug-that-enabled-hackers-to-take-over-app
WhatsApp, Web app, Messaging
bugs

WhatsApp fixes video call security bug

WhatsApp claims there's "no evidence" that the exploit was used in the wild
11 Oct 2018
Advertisement
Visit/bugs/31935/facebook-expands-bug-bounty-program-to-include-third-party-apps
Lego builders dismantling the Facebook logo
bugs

Facebook expands bug program to include third-party apps

Social network will reward reports of access token exposure
18 Sep 2018
Visit/security/31787/vulnerability-spotted-in-fortnite-android-installer
Security

Vulnerability spotted in Fortnite Android installer

Google identified the flaw, which has since been patched
28 Aug 2018
Visit/security/31767/incredibly-dangerous-rce-flaw-found-in-apache-struts-2
Security

"Incredibly dangerous" RCE flaw found in Apache Struts 2

Experts indicate it could lead to a second Equifax-level data breach
23 Aug 2018
Visit/security/31762/leaky-api-exposes-black-hat-attendees-personal-data
Leaky bucket
Security

Leaky API exposes Black Hat attendees’ personal data

Embarrassing breach revealed names, email addresses, phone numbers and more
22 Aug 2018
Advertisement
Visit/security/31698/three-new-spectre-style-flaws-revealed-that-affect-intel-chips
Foreshadow CPU vulnerability logo showing a lock with a broken shadow
Security

Three new Spectre-style flaws revealed

New bugs mark the third critical vulnerability to exploit speculative execution
15 Aug 2018
Visit/security/31647/openemr-flaws-left-millions-of-health-records-exposed
Clinician's computer meltdown
Security

OpenEMR flaws left millions of health records exposed

A total of 23 critical vulnerabilities were left unpatched until last month
8 Aug 2018
Visit/digital-currency/31625/hackers-use-200000-insecure-brazilian-routers-to-mine-cryptocurrencies
CoinHive is a tool that allows web browsers to mine for cryptocurrencies in the background
digital currency

Hackers use insecure routers to mine cryptocurrencies

The attack exploits a flaw that was previously patched
3 Aug 2018
Visit/privacy/31435/nhs-glitch-led-to-150000-patients-data-accidentally-shared-against-their-will
Clinician's computer meltdown
privacy

Glitch sees 150,000 patients' data shared against their will

The coding error in a piece of software developed by TPP had gone undetected since 2015
3 Jul 2018
Visit/bugs/31252/when-it-comes-to-technology-first-isnt-always-best
bugs

When it comes to technology, first isn't always best

Patience is preferable to bugs, with Alexa's evil laugh just the latest in a line of annoying flaws
9 Jun 2018
Visit/data-breaches/31245/it-s-the-legacy-that-gets-you-warns-ex-talktalk-boss
data breaches

“It’s the legacy that gets you”, warns ex-TalkTalk boss

Dido Harding urges companies to decommission unsecured legacy systems to avoid a costly data breach
5 Jun 2018
Advertisement
Visit/wannacry/31102/why-we-re-ignoring-the-real-lesson-of-wannacry
hacking and ransomware
WannaCry

Why we’re ignoring the real lesson of WannaCry

One year on, why does no one WannaLearn?
11 May 2018
Visit/security/31060/twitter-alerts-users-after-squashing-password-revealing-internal-bug
Security

Twitter alerts uses after finding password-revealing bug

The company is advising users to reset their passwords 'in the interests of caution'
4 May 2018
Advertisement