A program that pays researchers for information on software vulnerabilities, the Internet Bug Bounty (IBB), will now also reward those who develop tools and techniques to spot bugs.
For Microsoft, the vulnerabilities just keep popping up, and appear to be surfacing more quickly than ever before.
A vulnerability found in the late 1990s in Microsoft Windows can still be used to steal login credentials, according to a security advisory released Monday.
An otherwise unremarkable hacking group likely aligned with China appears to be one of the first to have targeted so-called air-gapped networks that are not directly connected to the Internet, according to FireEye.
French-language TV network TV5Monde was hit by a crippling cyberattack Wednesday that disrupted broadcasting across its channels and also involved the hijacking of its website and social media accounts.
A vulnerability in the popular WP Super Cache plug-in for WordPress could allow attackers to inject malicious scripts into websites. The scripts, when loaded by administrators, could trigger unauthorized actions.
A large number of ads distributed by a Google advertising partner redirected users to Web-based exploits that attempted to install malware on users' computers.
The Federal Bureau of Investigation warned on Tuesday that attackers claiming to be sympathetic to the extremist group ISIS are targeting websites that have vulnerable WordPress plugins.
The open-source and free software user group Linux Australia said personal information for attendees of two conferences it hosts may have been leaked after malware was found on one of its servers.
Security vendor Malwarebytes has flagged the Dell System Detect tool as a potentially unwanted application after older versions of the program were found to put computers at risk.
A new open-source tool can periodically scan an area for rogue Wi-Fi access points and can alert network administrators if any are found.
Over 100,000 devices have a misconfigured service called multicast DNS that accepts requests from the Internet and can potentially be abused to amplify distributed denial-of-service (DDoS) attacks.
It's not clear if the U.S. government is living up to its promise to disclose serious software flaws to technology companies, a policy it put in place five years ago, according to the Electronic Frontier Foundation.
The U.S. Congress is moving forward quickly with legislation that would encourage private companies to share cyberthreat information with government agencies, despite concerns that two leading bills weaken consumer privacy protections.
Some Internet gateway devices commonly used by hotels and conference centers can easily be compromised by hackers, allowing them to launch a variety of attacks against guests accessing the Wi-Fi networks.
Most Popular Reviews
- 1 Google Pixel XL full, in-depth smartphone review: Phones just got smarter
- 2 Sony Xperia XZ review: turbo-charged last-gen phone
- 3 Hisense Series 7 ULED 4K UHD TV review
- 4 Sony X9300D and X8500D UHD 4K TV review
- 5 Moto X Force review: Leading features from a mid-range phone
Join the PC World newsletter!
Latest News Articles
- Gallipoli is now an amazing video game
- U.S. indicts Russian for hacking LinkedIn, Dropbox, Formspring
- An IoT botnet is partly behind Friday's massive DDOS attack
- Bankers plan to give Corda blockchain code to Hyperledger project
- Easy-to-exploit rooting flaw puts Linux computers at risk
GGG Evaluation Team
First impression on unpacking the Q702 test unit was the solid feel and clean, minimalist styling.
- Google Pixel XL full, in-depth smartphone review: The new best Android phone
- Japan Robot, gadget and car expo slideshow
- Panasonic DX900U UHD 4K smart TV review: Best all-round TV ever?
- What's the difference between an Intel Core i3, i5 and i7?
- Laser vs. inkjet printers: which is better?
- PTService Management AnalystSA
- CCSenior Project Manager (Marketing Automation)NSW
- CCDigital Producer - 3 Month Contract Immediate Start!NSW
- CCContract IT Assistant (Office Automation) 161031/ITA/541Asia
- CCTesting Capability LeadNSW
- CCCloud Security Services SpecialistVIC
- CCContract Analyst Programmer (JAVA/SQL/Web) 161026/AP/632Asia
- FTSr. Insight SpecialistVIC
- CCSystem & Network EngineerVIC
- FTSenior Front End DeveloperNSW
- CCContract Analyst Programmer (Java/J2EE/MyEclipse) 161007/AP/vmpAsia
- CCNetwork AdministratorVIC
- CCService Desk ConsultantTAS
- CCJava DeveloperNSW
- CCL1 Desktop Support - 3 days a weekNSW
- FTDirector Data AnalyticsACT
- CCContract IT Assistant (PC LAN Support) 161020/ITA/652Asia
- FTNetwork Support SpecialistACT
- CCManager of Pricing and AnalyticsVIC
- CCSenior Java Developer-Java SE 8, HTTP APIs, Protocol BuffersNSW
- FTTechnical Support Engineer | Cloud | Automation techsNSW
- CCField EngineerVIC
- FTRelease CoordinatorACT
- FTSenior Architect | Perl | Linux |MySQL | Infrastructure | TelecomNSW