76 popular iPhone apps found wide open to data interception attacks

New research has discovered scores of buggy iOS apps that do a lousy job of securing users’ information, opening opportunities for man-in-the-middle attacks.

Read more in my article on the Hot for Security blog.

Microsoft issues warning after Xbox Live certificate ‘inadvertently’ leaks

A malicious attacker could in theory use the leaked security certificate to launch a man-in-the-middle attack, intercepting Xbox Live usernames, passwords and even payments made by game players.

Read more in my article on the We Live Security blog.

Dell’s ‘apology’ for eDellRoot fails to say sorry for putting your security at risk

Maybe it’s the lawyers who are stopping companies from putting their hands up and admitting they did wrong after virtually every security snafu and data breach. But I don’t think it’s a good way to rebuild a relationship with customers who were put at unnecessary risk.

eDellRoot, the huge security hole shipped with Dell laptops and PCs – what you need to know

Computer hardware giant Dell is shipping PCs and laptops with a security hole that could make it easy for online criminals to spy upon your online activity – including intercepting your web email, your purchases and your online banking.

Android Instapaper users at risk of man-in-the-middle attacks

Too many smartphone apps, amongst them some of the world’s most popular apps, are doing a poor job of securing their users’ information.

More security flaws discovered in OpenSSL. Patch now!

Remember the Heartbleed scare which had you scurrying to change your passwords and worrying about online privacy a few weeks ago?

Well, it looks like that wasn’t the last word in security issues with OpenSSL.