Apple just patched an SSL/TLS bug in iOS - but the flaw is not yet fixed in OS X.
Paul Ducklin comes to the rescue with explanations, mitigations, and even an unofficial patch! (For educational purposes only, you understand.)
Which pets make the best/worst passwords?
How many times did Google make the same coding blunder?
Find out this and more in our one-minute wrapup of the week's security lessons!
Four months ago, the Android platform was stirred, if not shaken, by a pair of code verification holes.
Turns out there was a third one, now fixed in Android 4.4, better known as Kit Kat.
Paul Ducklin looks at what we can learn from it...
Who's "Paunch"? What happens when you arrest him? How do you win $100k from Microsoft? Could there really be a backdoor in Adobe's code?
Find out the answers in this week's episode!
Apple has quickly fixed two lockscreen bugs that it introduced with iOS 7.
Well done, Cupertino!
(To all hardcore Apple fans reading this: that's not irony. I really mean it.)
We really didn't want to write another Apple iOS 7 story.
But with reports surfacing that HAL's smooth-talking stepsister Siri lets you *talk* your way into a locked iPhone, we couldn't help it.
PayPal will sell you an authentication token that can greatly boost your account security.
But you can skip token authentication easily. Find out how, and vote in our poll to say what you think of this feature...
ZonD Eighty, the Russian hacker who brought App Store fraud to unjailbroken iPads and iPhones, has extended his "service" to OS X users.
Mac owners can now join their iDevice brethren in ripping off developers.
A Russian hacker has created a website you can use to make fraudulent in-app purchases on your iPad or your iPhone.
This is a pretty big blow to Apple - especially at a time when it is facing criticism for some of the stuff it lets into the App Store in the first place.