Video game developer Valve Corporation recently created a patch to fix a buffer overflow vulnerability in its Source SDK library that can allow for remote code execution on client and server devices.
Researchers investigating a vulnerability in security cameras from Axis Communications ended up uncovering a far more wide-ranging threat when they discovered the flaw actually lies within a toolkit used by myriad IoT product developers.
Oracle has issued a critical patch update for July 2017, fixing 308 vulnerabilities across its product line.
The agency encourages parents to do their due diligence into the cybersecurity of toys that connect to the internet both directly through Wi-Fi and indirectly via Bluetooth to a mobile device connected to the internet.
Cisco on Monday released software updates to fix a critical remote code execution vulnerability in its WebEx browser extensions for both the Google Chrome and Mozilla Firefox browsers.
As automakers rush to bring autonomous vehicles to market, white hats continue to find vulnerabilities that could be exploited remotely.
Researchers found just two weeks after the EternalBlue exploit was used in the WannaCry ransomware attack that 60,000 hosts are still vulnerable.
Uber recently patched an authentication bypass vulnerability on its custom single sign-on solution.
SAP on Tuesday released a dozen security notes after developing patches for a series of vulnerabilities, including a high-priority flaw in its Point of Sale Retail Xpress Server that could expose the server to attackers.
Adobe issued a light Patch Tuesday bulletin today covering three vulnerabilities in Flash Player and three in Adobe Connect for Windows.
Google this week released its July 2017 security bulletin for the Android operating system and Nexus and Pixel devices, making patching available for all 138 vulnerabilities.
Cisco on Thursday released security updates to fix multiple vulnerabilities - three critical in severity - in its Elastic Services Controller, Ultra Services Framework and Staging Server, and StarOS CLI products.
Lenovo VICE mobile phones running on Android Lollipop and earlier versions contain three vulnerabilities that allow rooting of the device.
Four people have been arrested in the U.K. and charged with running a tech support scam posing as Microsoft technical support personnel.
The average bug bounty payout has jumped from $295 a little over a year ago to $451, as the automotive industry leads the way with an average payout of $1,514, according to Bugcrowd, a leading vulnerability disclosure platform provider.
German industrial manufacturing company Siemens patched a pair of vulnerabilities in their products.
Cisco has patched vulnerabilities in its Prime Infrastructure (PI) and Evolved Programmable Network Manager (EPNM), Virtualized Packet Core - Distributed Instance (VPC-DI), and WebEx Network Recording Player products.
The top three malware families in May impacted a quarter of the globe's organizations with zero-day attacks, according to Check Point's latest Global Threat Impact Index.
The scourge is intended to silence journalists, activists and human rights defenders.
The disk back-up utility software Acronis True Image is susceptible to arbitrary code execution attacks because it does not perform update operations securely, according to a new vulnerability advisory published on Monday.
The latest WikiLeaks dump shows off the CIA's exploitation of vulnerabilities in internet routers.
Researchers spotted a Stack Clash vulnerability in several operating systems which can be used to corrupt memory and execute arbitrary code.
Samsung Magician recently patched a flaw which could allow an attacker to execute arbitrary code but a separate flaw may have left millions at risk all because of an renewed domain.
The US-CERT on Thursday announced security updates to Mozilla Thunderbird, Google Chrome and the Internet Systems Consortium's BIND Domain Name System software.
Defenses to thwart the WannaCry malware have been embedded into the latest Patch Tuesday release from Microsoft.
An update for Adobe Flash Player addresses critical vulnerabilities.
Old Wimax routers have been found to contain backdoors and could enable hackers to bypass authentication researchers have now disclosed, aiding use for DDoS attacks.