A buffer-overflow vulnerability in WhatsApp is being exploited by NSO Group to remotely take over victims’ iOS and Android devices.

Here come more stories of Russia's interference in elections, Moscow's attempts to sow discord and Putin's conspiracy-theory spreading.

Ever AI is violating user privacy by using millions of photos to train an AI facial-recognition product aimed at enterprises and the military. On the face of it, this isn’t a good look for Ever.

Hobbs, Kerckhoffs and Shannon were right: Security by obscurity is no security at all. Chinese state-sponsored hackers have been making fools of the US National Security Agency. It turns out that Shadow Brokers weren’t the first to steal the NSA’s s ...

Many private Git repositories are at risk of being leaked to the public. Anonymous hackers have wiped victims’ code and are demanding Bitcoin. Or else? Or else they’ll open-source it for you. And then everyone will be able to see your soopah-sekrit s ...

Every Dell endpoint running Windows has a nasty remote-code execution vulnerability. Amazingly, Dell figured it would be great to allow a web page to take full control of a PC—admin privileges and all.

Yet another cloud database with no #security. And this one’s enormous. This time, Microsoft was discovered hosting an 80 million-row, open database of US adults aged over 40. We still don’t know who owns the data, but some speculate shadow IT is to b ...