Cyber security's comprehensive news site is now an online community for security professionals, outlining cyber threats and the technologies for defending against them.

No-code and low-code development platforms are part of application development, but there are keys to making sure that they don't leave security behind with traditional coding.

Researchers found it was possible to spoof SMS messages from TikTok and exploit an API flaw that could grant access to users' personal data.

The company alleges a former employee violated company policy and betrayed its trust as he "intentionally decimated" its North American business.

Project Zero vulnerability disclosures will now happen at 90 days, even if a patch becomes available before then.

A Romanian national has been sentenced to 5 years in prison after racking up almost $400,000 in an ATM skimming scheme.

The updated disclosure policy aims to achieve more thorough and improved patch development, Google reports.

How the Advanced Threat Research Team can stop hackers from stealing personal data from a wearable device.

The top classes of vulnerabilities for 2019 indicate that developers still don't correctly sanitize inputs, nor protect passwords and keys as they should.

A hacker who apparently likes the musician Drake leaves lyrics from the artists song In My Feelings behind in attack that delivers malware Lokibot or Azorult.

Explore the latest news and expert commentary on Cyberattacks & Data Breaches, brought to you by the editors of Dark Reading

Increasing sophistication of ransomware attacks might be forcing victims to open their wallets. Click image to read more.

Commentary: Rust keeps getting hotter. Here are a few of the top reasons.

Google’s Project Zero bug-hunting team has tweaked its 90-day responsible disclosure policy to help improve the quality and adoption of vendor patches.

The PowerTrick backdoor, which fetched yet other backdoors, is designed to help TrickBot evade detection.