Apple has fixed a flaw in the "Sign in with Apple" feature that could have enabled attackers to break into user accounts for third-party services.

Octopus Scanner is a new malware used to compromise 26 open source projects in a massive GitHub supply chain attack.

PonyFinal is deployed in human-operated ransomware attacks, in which adversaries tailor their techniques based on knowledge of a target system.

The vulnerability, which exists in almost every version of Android, is both more dangerous and harder to detect than its predecessor.

Mobile security experts share their go-to advice for protecting iPhones from hackers, thieves, and fraudsters.

Researchers shows most "flight-risk" employees planning to leave an organization tend to start stealing data two to eight weeks before they go.

Verizon's annual data breach report shows most attackers are external, money remains their top motivator, and web applications and unsecured cloud storage are hot targets.

There remains a disconnect between developers and security teams, with uncertainty around who should handle software security.