Every Dell endpoint running Windows has a nasty remote-code execution vulnerability. Amazingly, Dell figured it would be great to allow a web page to take full control of a PC—admin privileges and all.

Sophisticated attackers are now using "invisible malware," a new form of attack that your firewalls can't stop and your anti-malware software can't find nor remove. Here are steps you can take right now to protect your servers and network.

A list of all-too-predictable choices for breached accounts includes 123456 and "Liverpool".

It is challenging enough for developers to make their code work. But software has to be more than functional. It has to be secure, accessible, and actually reflect what users want. If you need to get developers to provide something beyond the basics, try these motivational techniques.

Jan Krissler used high resolution photos, including one from a government press office, to successfully recreate the fingerprints of Germany’s defence minister

Keystrokes can be recorded, replayed and injected into Fujitsu wireless model.

A data breach is almost inevitable because we continue to make the same security mistakes. Here are five of the bigs ones, according to experts, and why you simply have to fix them.

Steven Furnell, University of Plymouth UK, and Eugene H. Spafford, Purdue University USA, turn the clock back 30 years and show that, though bigger, the internet might not be much safer.

Current techniques to protect biometric details, such as face recognition or fingerprints, from hacking are effective, but advances in AI are rendering these protections obsolete.

Do you receive a code via SMS message, email or voice call to sign into your bank account? This security method is no longer considered very secure.

A group of academics have found three new security flaws in 4G and 5G, which they say can be used to intercept phone calls and track the locations of cell phone users. The findings are said to be the first time vulnerabilities have affected both 4G and the incoming 5G standard.

Darkmatter is also one of the least-discriminating cybermercenary bands in the world, available to help torturers, murderers and thugs hang onto power by attacking opposition movements and letting the secret police know who to arrest, torture and kill

Clever trick may be designed to bypass Gatekeeper protections built into macOS.

A new cybersecurity program teaches girls online safety, while giving them tech confidence.

When you need to run Linux in an especially secure environment, SELinux is the answer. But it takes some know-how to get the hypersecure Linux version up and running.

Need an overview to bring you up to speed? Start with this: TLS is the critical Internet infrastructure that makes commerce, trust, and confidentiality possible.

Jennifer Valentino-DeVries, an investigative reporter for The Times, explains how reporters discovered some of the information mobile apps collect.

Attackers have infected 20,000 WordPress sites by brute-forcing administrator usernames and passwords.

Cybersecurity professionals are often portrayed as lone hackers in hoodies. But as well as technical skills, they also need to be excellent communicators and have a high degree of personal integrity.

BlackBerry has agreed to acquire next-generation endpoint security firm Cylance for US $1.4 billion in cash, and the assumption of unvested Cylance employee incentive awards.