Don't-Miss Security Stories
E-mail addresses and encrypted passwords compromised for oughly 2 percent of accounts, AOL says.
The software maker will pay US$10,000 for any critical vulnerability found in its new certificate verification code
IOS users were kept vulnerable for three weeks to known security issues previously patched in Safari for OS X, a former Apple employee said.
Apple on Tuesday released a fix for a bug related to the Heartbleed OpenSSL bug, though it cautioned that only certain models were affected and no passwords were disclosed.
Some iOS users found a malicious library of unknown origin on their jailbroken devices
For almost an entire year beginning in March 2013, malicious attackers may have been harvesting customer information including credit card data, LaCie says.
News of the Heartbleed bug has brought the Web to its knees, and Bloomberg says the NSA has been exploiting it for at least two years.
A company spokesperson confirmed to Re/code that none of its web services use the OpenSSL software which is at the center of the security uproar.
As the list of major sites hit by Heartbleed grows, LastPass is helping its users figure out which accounts need password changes.
Adobe Systems addressed two remote code execution flaws, including one demonstrated at the Pwn2Own hacking competition last month.
Administrators are advised to patch and revoke old private keys
An iOS 7 bug could interfere with Activation Lock, iAds are now open to all and sundry, and Apple announces its next quarterly conference call.