Tenable is hedging all of its security bets on the power of predictive, as the company announced general available of its Predictive Prioritisation solution within Tenable.io.

Alex Nikolova made the discovery while conducting a research project on the same-origin policy of various web browsers.

Without a standard for responsible disclosure, even those who want to disclose vulnerabilities responsibly can get frustrated with the process.

Check Point’s researchers confirm Coinhive holds the top position in February's Top Malware index for fifteenth successive month before it shut down, while GandCrab distribution campaigns increase.

Logitech has bowed to public pressure and reinstated a developer firmware version of its popular Harmony Hub, after it was revealed that the Hub had critical security flaws.

GitHub’s Bug Bounty program is now five years old and to mark the occasion it has revamped the program’s scope, rewards, and new legal rules.

IBM X-Force Red and Qualys are declaring a war on unpatched systems, and they believe automation is the answer.

Switzerland’s postal service Swiss Post is inviting keen-eyed security experts and white hats to hack its e-voting system.

An attacker could target a rider, and then cause the scooter to suddenly brake or accelerate.

This means any application handling PNG files that have been carefully crafted by an attacker can end up running the attacker’s code.

The Australian Prudential Regulation Authority’s standard, CPS 234, is aimed at minimising the threat of cyber attacks for APRA-regulated entities.

CERT NZ’s April-June 2018 Quarterly Report suggests that cyber threats – and the amount of people who are reporting them – are once again on the rise, and fewer people are losing money.

Radiflow discovered that a serious vulnerability in the devices put the safety and availability of ICS networks in jeopardy.

These routers are used by many organisations and businesses, including internet service providers.

Foreshadow is the third major flaw found in Intel chips this year after Spectre and Meltdown.

This exploit gives an actor an incredible advantage to expand compromises significantly.

According to a survey of 500 decision makers across several industries, 80% believe that cloud collaboration tools are vulnerable to cyber attacks.

The next update to Google Chrome will bring new protections against web browser attacks such as Spectre.

“Over the coming weeks, we will be adding more historical Python vulnerabilities to our database. "

Check Point’s latest Global Threat Index reveals that Trojan malware families enter Top 10 Most Wanted Ranking; Cryptomining remains top of the list.

When Chinese security researchers found vulnerabilities in BMW’s connected vehicles, BMW didn’t just fix the vulnerabilities, it awarded the team.

According to IMDA, the programme will benefit 200 Singapore-based ICT companies over the two-year period.

78% of 1100 examined codebases contained at least one open source vulnerability, with an average of 64 vulnerabilities per codebase.

Across two million applications analysed by Pradeo’s security engine, almost one third of applications contained an OWASP vulnerability.