GoDaddy had a SSL certificate security problem. A flawed authentication protocol caused the site to revoke 9,000 SSL certificates.
Security researchers discovered two unrelated ad fraud campaigns in which cybercriminals hijacked clicks from authentic Google advertisements.
X-Force researchers disclosed several Android vulnerabilities that could enable cybercriminals to use custom boot modes to take over Nexus 6 and 6P modems.
Google's new Security Key protects users more effectively than simple two-factor authentication (2FA) without the added cost of smart hardware.
Some of the biggest names in the web browser game — namely, Google, Microsoft and Mozilla — plan to stop accepting insecure SHA-1 certificates in 2017.
The WoT privacy breach highlights the commonplace nature of third-party data selling and frequent failure to read the fine print in user agreements.
First organized in 2005, The CA/Browser Forum is a voluntary group of certification authorities (CAs), vendors of internet browser software and suppliers of other applications that use X.509 v.3 digital certificates for SSL/TLS and code signing. In...
September was another huge month for mobile security news. Headlines included new security features for Android devices and the launch of a $12,000 phone.
Google recently introduced new tools for developers to help them create a better web content security policy. Specifically, the initiatives should target cross-site scripting (XSS) vulnerabilities, which Threatpost said are the “cockroach of...
The new Google API allows a network service to obtain a hardware-backed cryptographic guarantee of the identities of a device and the user accessing it.