The company already patched an API flaw that allowed a security researcher to use the app to find the real identity of drivers using it.

A set of address-spoofing bugs affect users of six different types of mobile browsers, with some remaining unpatched.

Explore the latest news and expert commentary on Vulnerabilities & Threats, brought to you by the editors of Dark Reading

We'll guide you through the process of using Homebrew package manager to install security tools on macOS to perform reconnaissance, discovery, and fingerprinting of the devices on your network.

Cybersecurity was a challenge before COVID-19 sent millions of employees home to work from their own devices and networks. Now what?

Attackers are targeting Microsoft Office 365 users with a Coinbase-themed attack, aiming to take control of their inboxes via OAuth.

The mass movement to remote work has forced organizations to rethink their long-term plans for endpoint security. How will things look different next year?

Hundreds of medical patients taking cancer drugs, Premarin, Lyrica and more are now vulnerable to phishing, malware and identity fraud.

Amazon, Apple, Netflix, Facebook and WhatsApp are top brands leveraged by cybercriminals in phishing and fraud attacks - including a recent strike on a half-million Facebook users.

Farsight Security's platform will offer no-cost access to certain tools and services.

Here’s the latest Naked Security Live video – enjoy (and please share with your friends)!

What can we learn from the US DOJ indictments against the “Sandworm Team”?

Cyber security's comprehensive news site is now an online community for security professionals, outlining cyber threats and the technologies for defending against them.

The out-of-band patches follow a lighter-than-usual Patch Tuesday update earlier this month.