The third-party Chrome extension Copyfish recently got hacked. As a result, the hackers were able to inject malicious JavaScript code into the code base and use it to display ads on all the pages users who had the extension installed viewed.

It took Copyfish’s developers a full day to realize they had been breached, and by that time, the hacker had transferred the extension to his own developer account, where it was beyond the reach of its original owners.

One of the most dangerous forms of banking malware, dubbed “Svpeng,” has recently gotten an upgrade that makes it even more troubling, this, according to researchers at Kaspersky Labs. The upgrade adds a new keylogging feature that allows the malicious software to track and log each keystroke, sending it back to the hackers at whatever interval they wish and giving them another means to steal an infected user’s sensitive information.

Smart devices are coming under increasing scrutiny. Why, you ask? Very few of them have any security at all, and the ones that do tend to have only the most rudimentary security protocols in place, which presents almost no challenge to even a novice hacker.

Patrick Wardle is a name you may not be familiar with, but if you’re a Mac user, it’s a name you need to know.

He’s an ex-NSA hacker chief and is now the chief security researcher for Synack, and over the past few months, he’s been hot on the trail of an incredibly elusive bit of malware called Fruitfly.

Rumors of Microsoft Paint’s death have been wildly exaggerated. Recently, Microsoft announced the end of an era with the decision to remove paint from Windows 10, replacing it with the more modern Paint 3D. Then, something unexpected happened.

The cumbersome, barely functional art program received such a strong outpouring of support that Microsoft reversed its decision.

Trouble continues to brew where the IoT (Internet of Things) is concerned. Recently, the Internet Crime Complaint Center (IC3), which is a division of the FBI, has issued a warning to parents about the potential dangers that “smart” toys pose.

The warning comes on the heels of a number of reports to the IC3 about hackers taking control of smart toys and spying on children.

File this report away under “how not to respond to a data breach.” Yes, it has happened again, and this time, to the financial giant, Dow Jones & Company.

The UpGuard Cyber Risk Team discovered a cloud-based file repository controlled by the company that had been misconfigured, allowing semi-public access to it.

It’s finally happening, and we now have a firm timeframe. Adobe just announced that as of 2020, they will no longer be supporting their beleaguered Flash player.

Once wildly popular and used by webmasters all over the world to provide interactive content on websites, over the past decade, Flash Player has been plagued by serious security flaws.

Are you a fan of wrestling? Have you signed up to the WWE’s website or any of their newsletters? If so, at least some of your information may have been stolen. Here’s what we know:

A security researcher from Kromtech (owned by Forbes) name Bob Dyachenko discovered a WWE database on one of Amazon’s web servers (AWS) that was not password protected, and thus, available for viewing and/or downloading by anyone who knew the address.

It just may be the ultimate hack: stealing passwords from your brainwaves. It’s something that has moved beyond the realm of science fiction and into the realm of possibility, according to a joint research study conducted by researchers at the University of Alabama at Birmingham and the University of California, Riverside.