More and more corporate activities are being undertaken by employees depending on iPhones, iPads, laptops and other mobile devices.
Malwarebytes found that, since early July, thousands of sites had been targeted in the campaign.
Researchers at Trend Micro found that attackers were targeting Simple Mail Transfer Protocol (SMTP) servers to execute malicious code and an IRC bot.
Assume every Drupal 7 website is compromised, unless patched or updated to Drupal 7.32 within seven hours of the disclosure of a highly critical SQL injection vulnerability.
Attackers are becoming increasingly skilled at planting malicious code on websites frequented by their desired targets, commonly called "watering hole" attacks.
The bug, CVE-2014-6352, has a temporary solution, but still no permanent fix from Microsoft.
While it may seem like 2014 is the year of the vulnerability, in reality, this year has not been much different than years past.
The Windows zero-day received a patch last week, but the fix can still be bypassed by crafty attackers.
Reuters reported on Wednesday that DHS is investigating roughly 24 cases of suspected vulnerabilities in medical devices and hospital equipment.
Developers patched multiple vulnerabilities in PHP that would have allowed remote code execution.
The iOS 8.1 update comes with a fix to a vulnerability known as POODLE, which can enable an attacker to decrypt data protected by SSL.
Apple OS X Yosemite includes fixes for more than 40 vulnerabilities, including POODLE and Shellshock.
A report details the three most commonly exploited Java bugs affecting users.
Security pros urge operators and users to nix support for the popular, but antiquated, SSL v3.0.
We are now in the fast lane towards a driverless future. Will we have to brake for hackers?
Upgrading to Drupal core 7.32 will address the vulnerability, which could lead to privilege escalation and arbitrary PHP execution if exploited.
Researchers at Google have discovered a flaw in SSL 3.0 that allows attackers to exploit the popular cryptography protocol and intercept communications.
Researchers found that the botnet contained 360 bots and was used to target Spanish-speaking Citibank customers.
The campaign targeted users running vulnerable versions of Internet Explorer.
Adobe addressed nine Flash Player flaws in three CVEs, giving four bugs the company's highest priority rating.
For the month of October, the tech giant released eight patches, including three critical fixes.
FireEye researchers say that two zero-day flaws were used in separate, unrelated attacks.
Students at the University of British Columbia have been warned that their personal information may have been exposed thanks to a software bug.
Out of the nine bulletins, three will address critical RCE bugs in its products.
Many of the vulnerabilities can lead to a denial-of-service condition, but others could result in a full compromise of the affected system.
Google has paid more than $75,000 in bug bounties to security researchers who helped discover flaws patched in its recent release of Chrome 38.
MacRumors forum users are reporting that the bug is deleting their iCloud documents, and in some cases, the docs could be permanently lost.
Moving enterprise apps to the cloud is becoming a very attractive option for organizations striving to cut IT costs while improving agility and scalability.
Mozilla has updated its Bugzilla tracking program to patch security holes, including a flaw that exposed bugs that security researchers are patching.
Slightly more than a week after the bug's disclosure, the attacks on domains might have already peaked, according to new research.