A bug in an older version of AFNetworking, an open source library widely used for adding networking capabilities to iOS and OS X apps, can allow attackers to intercept and decrypt HTTPS traffic between apps and servers, effectively revealing all the sensitive information exchanged, such as passwords, bank account information, and so on.
Fiddling with your car's innards will soon become easier and cheaper than ever before, as Eric Evenchick has created and made available hardware and software design files for CANtact, an open source CAN bus tool that can be manufactured for less than $100.
As announced on Monday, the OpenSSL project team has released new versions of the cryptographic library that fix a number of security issues.
A group of researchers from the Information Security Group from Royal Holloway, University of London, wanted to see how many TLS servers still supported the weak, export-grade (512-bit) RSA public keys a week after the public disclosure of the FREAK flaw.
Mozilla has unveiled the result of a successful project executed by a group of Computer Science students from Argentina: it's called Masche, and it's an open source, cross-platform tool for inspecting the content of the memory of a system and detecting threats.
Reading our newsletter every Monday will keep you up-to-date with security news.
Receive a daily digest of the latest security news.