Feeling creative? Submit your caption in the comments, and our panel of experts will reward the winner with a $25 Amazon gift card.

Researchers have discovered weaknesses in PDF encryption which could be exploited to reveal the plaintext contents of a file to an attacker.

Without one, the companies that collect our data will likely face compliance with California’s take-no-prisoners law, in effect 1 January 2020.

A double-free bug could allow an attacker to achieve remote code execution; users encouraged to update to patched version of messaging app.

Federal guidelines can help all organizations pragmatically and meaningfully improve their firmware security.

An unprotected Elasticsearch cluster contained personally identifiable information on Russian citizens from 2009 to 2016.

Eight high-severity vulnerabilities exist in the Foxit Reader tool for editing PDF files.

Black Hat's Network Operations team members discuss looking for the "bad within the bad." Also, RSA's CTO talks about managing risks to prevent an individual problem from becoming a societal problem.

Whether intentionally or unintentionally, employees can pose a significant security risk to company data, according to a new report from data protection firm Code42.

On top of the forthcoming California Consumer Privacy Act, a new ballot initiative seeks to tamp down data privacy even further in the state.

We need technology, but we can’t forget the importance of humans working methodically to make it effective.

Black Hat's Network Operations team members discuss looking for the "bad within the bad." Also, RSA's CTO talks about managing risks to prevent an individual problem from becoming a societal problem.