Researchers discovered that a vulnerability whose existence has been known for 15 years could affect many web applications, allowing malicious actors to launch man-in-the-middle (MitM) attacks.

The developers of the open source office suite LibreOffice informed users this week that they have patched a vulnerability which could allow attackers to execute arbitrary code using specially crafted RTF files.

Updates released this week by Foxit Software for its Reader and PhantomPDF products patch over a dozen vulnerabilities discovered recently by several researchers. The flaws affect the 7.3.4.311 and ealier Windows versions of Foxit Reader and PhantomPDF.

Recently, you may have seen some of your Facebook friends started posting a Facebook "Privacy Notice" clarifying that they no longer give Facebook permission to use their photos, personal information, and so on.

If just relying on the security tools of Microsoft Office 365 can protect you from cyber attacks, you are wrong. Variants of Cerber Ransomware are now targeting MS Office 365 email users with a massive zero-day attack that has the ability to bypass Office 365's built-in security tools.

Google is rolling out an updated security warning system this week for Gmail users that the company says is designed to make sure they don't fall victim to cyber attacks.

Microsoft to Solve Document Cloud Compliance and Visibility Issues With Azure Information Protection Microsoft is planning to preview a new addition to its Azure security portfolio in July. Named Microsoft Azure Information Protection it combines the Azure Rights Management System (RMS) with the data classification and labeling technology acquired with the purchase of Secure Islands in November 2015. The purpose is to provide greater clarity and control over the movement of documents in and through the cloud in the face of increasing geographically based privacy and data protection laws.

When it comes to data breaches of major online services like LinkedIn, MySpace, Twitter and VK.com, it's two-factor authentication that could save you from being hacked. Two-factor authentication or 2-step verification is an effective way to secure online accounts, but many users avoid enabling the feature just to save themselves from irritation of receiving and typing a six-digit code that takes their 10 to 15 extra seconds.

Apple patched the vulnerability with the release of firmware versions 7.6.7 and 7.7.7 for AirPort Express, Extreme, and Time Capsule base stations with 802.11n, and AirPort Extreme and Time Capsule devices with 802.11ac. The firmware updates can be installed using the AirPort Utility for OS X or iOS.

Ethio-CER2T mission is Create a secured, reliable and enabling Ethiopian cyber space by coordinating and building national capacity of proactive readiness and effective incident response centered on analysis. FIRST is the global Forum for Incident Response and Security Teams FIRST is the premier organization and recognized global leader in incident response. Membership in FIRST enables incident response teams to more effectively respond to security incidents reactive as well as proactive. FIRST brings together a variety of computer security incident response teams from government, commercial, and educational organizations. FIRST aims to foster cooperation and coordination in incident prevention, to stimulate rapid reaction to incidents, and to promote information sharing among members and the community at large.