Despite having paid $125,000 for information about an Address Space Layout Randomisation (ASLR) vulnerability affecting Internet Explorer, Microsoft has decided against patching it because they feel it does not affect the default configuration of IE.
A serious vulnerability in RubyGems, a package manager for the Ruby programming language, can be exploited to trick end users into installing malware from attacker-controlled gem servers, Trustwave researchers have discovered.
New versions of popular open source content management system Drupal are out, and fix a series of vulnerabilities, including a critical one that can result in an attacker taking over administrator accounts.
The OpenSSL Project has pushed another update for the eponymous open-source cryptographic library.
If you've recently bought an Apple Watch, or if you have had one for a while now, but you haven't updated to the latest watchOS version, now is the time to do it - but not while you're connected to a network you can't trust.
Reading our newsletter every Monday will keep you up-to-date with security news.
Receive a daily digest of the latest security news.