Bringing developers and security teams together guided by a common goal requires some risk-taking. With patience and confidence, it will pay off. Here's how.

1Password has created an advanced protection suite with new security tools for 1Password business users.

The idea that humans are the weakest link shouldn't guide the thinking on social-engineering defense.

Latest moves will make it much more likely that vulnerabilities in open source projects will be found and reported, GitHub says.

Social engineering is as old as mankind. But its techniques have evolved with time. Here are the latest tricks criminals are using to dupe end users.

The fake emails direct victims to log into a bogus IRS site.

A new report explores how attackers identify psychological vulnerabilities to effectively manipulate targets.

Marc Rogers discusses the logistics behind a recently-proposed anonymous bug submission program, meant to encourage ethical hackers to submit high-level bugs anonymously.

More than 12,000 variants of the infamous malware are targeting systems that are still open to the EternalBlue exploit - but the potential danger is low, Sophos warns.

Symantec identifies new 'Tortoiseshell' nation-state group as the attackers.

Information Security Services, News, Files, Tools, Exploits, Advisories and Whitepapers

An in-depth study of reported bugs has produced a list of the top 25 bug categories in software today – with some old familiar names topping the list.

Security leaders are increasingly making their case through metrics, as well they should - as long as they're not one of these.

Researchers discovered that smart TVs from Samsung, LG and others are sending sensitive user data to partner tech firms even when devices are idle.

The latest Naked Security Podcast is live – listen now!

The government, alleging that Snowden violated NDAs with the CIA and NSA, isn’t looking to stop the book’s publication or distribution.

Of the 2,300 archiving systems looked at, 590 were accessible from the internet, exposing 24 million medical records from 52 countries.

Lorem Ipsum is simply dummy text of the printing and typesetting industry. Lorem Ipsum has been the industry's standard dummy text ever since the 1500s, when an unknown printer took a galley of type and scrambled it to make a type specimen book

Cyber security's comprehensive news site is now an online community for security professionals, outlining cyber threats and the technologies for defending against them.

A full 90% of security professionals say that the disclosure of security vulnerabilities is good for the public, according to a poll conducted by 451 Research and commissioned by security testing company Veracode.

If you had a Yahoo account between January 1, 2012 and December 31, 2016, you may be entitled to a bit of money.