Researchers have discovered two zero-day flaws in Windows NTLM security protocols, both of which allow attackers to create new domain administrator accounts.

Security researchers have discovered a total of seven security flaws in the popular open source Dnsmasq network services software, three of which could allow remote code execution on a vulnerable system and hijack it.

The Krack Wi-Fi vulnerability exposes just how deeply broken IoT security really is—and just how limited the options are to repair it.

In October 2017, we learned of a vulnerability in Telegram Messenger’s Windows client that was being exploited in the wild. It involves the use of a classic right-to-left override attack when a user sends files over the messenger service.

In the past few weeks, the entire information security industry has grown very anxious about Meltdown and Spectre, two classes of exploits that can be used to manipulate vulnerabilities in the way many varieties of modern processors (but especially Intel…

CredSSP vulnerability in Microsoft Remote Desktop Protocol (RDP) affects all versions of windows and allows hackers to steal data and run malicious code.

Critical Remote Code Execution (CVE-2018-0171) Vulnerability in “Cisco Smart Install” of Cisco IOS and IOS XE Software Leaves Hundreds of Thousands of Network Switches Open to Hackers.

The flaws can expose emails sent in the past and "pose an immediate threat."

If you use Git, it's time to update it. Like, now.