The US Department of Homeland Security (DHS) is warning about a buffer overflow vulnerability in the Sielco Sistemi Winlog application used to control industrial systems.

The browser’s ability to block socially engineered malware, not sandboxing technology, is the most important criteria to judge browser security, argues Rob Rachwald, director of security strategy at data security firm Imperva.

On Tuesday, Mozilla released version 9 of its Firefox browser with fixes for a number of memory safety bugs in the browser engine; then, 24 hours later, it released 9.0.1 to fix a bug that caused Mac, Linux, and Windows users’ browsers to crash.

The hacktivist group Anonymous claimed this week that it took down a dozen Egyptian government websites using distributed denial of service (DDoS) attacks in retaliation for the government’s treatment of protestors.

A $16 million class-action lawsuit has been filed against the UCLA Health System for a data breach that compromised personal information of more than 16,000 patients.

Multi-factor biometric authentication is one of the five innovations that are likely to change the tech landscape within five years, according to IBM’s 5 in 5 annual list of innovations.

Microblogging service Twitter has decided to open source some of Whisper Systems’ software, including the TextSecure text-messaging encryption for Android devices, on Github.

A Chinese group allegedly hacked into the US Chamber of Commerce networks last year and gained access to information on its three million members.

Hackers broke into pop star Lady Gaga’s Twitter account and broadcasted a link to a scam offer for free iPad 2s to her 17 million fans, whom she calls “little monsters.”

The Manhattan District Attorney has indicted 55 individuals for operating a $2 million organized cybercrime ring that relied on corrupt employees at companies and institutions to steal personal information of victims.