The Stuxnet malware used to take Iran’s nuclear program offline in 2009/2010 is actually two years older than previously thought.

Researchers have discovered yet another Java zero-day vulnerability being successfully exploited in the wild against browsers that have Java v1.6 Update 41 and Java v1.7 Update 15 installed.

A new paper presented at the RSA Conference in San Francisco this week adds further evidence to the growing belief that China is the source of a large amount of APT cyber espionage against the West.

But one new and emerging threat for business is reputation – cyber breaches don’t merely lose data, the associated loss of reputation reduces corporate share value.

Par:AnoIA (Potentially Alarming Research from the Anonymous Intelligence Agency) has released 14 GB of data that it claims was lifted from the Bank of America.

Mobile users are increasingly likely to be spammed. New research has revealed there were more than 350,000 unique unsolicited mobile spam variants in 2012, with the highest churn rate in December with more than 53,000 unique variants alone.

The Cloud Security Alliance has announced several initiatives at this week’s RSA Conference in San Francisco that range from privacy issues, legal information, and major threats relevant to the cloud security landscape.

Adobe has released a new emergency out-of-band patch for Flash – the third Flash update this month and the fourth this year – fixing two vulnerabilities currently being exploited against Firefox, and a third vulnerability that could potentially be expl…

A live demonstration of active defense at RSA this week highlights the current debate on just how active (for which read ‘offensive’) companies can be in defending their networks. Laws to prevent hacking may also protect the hackers.

Infosecurity Editor, Eleanor Dallaway, spent a fascinating 45 minutes picking the brain of ESET security evangelist, Stephen Cobb at RSA in San Francisco.