Attackers can access Dropbox, Google Drive, OneDrive files without a user's password
The so-called "man-in-the-cloud" attack is said to be a common flaw in most cloud-based file synchronization services.

Hackers don't even need your password anymore to get access to your cloud data.

Microsoft releases out-of-band patch for Windows zero-day vulnerabilty

A Windows zero-day affecting a wide swath of Microsoft products has been found in the Hacking Team data leak, so Microsoft has released an out-of-band patch to fix the vulnerability.

Security researcher casually drops Adobe Reader, Windows critical vulnerability bomb

A Google Project Zero researcher has revealed the existence of 15 vulnerabilities in the software, including critical issues and one exploit which may completely bypass all system defense

On Tuesday, Google Project Zero hacker Mateusz Jurczyk outlined a total of 15 critical vulnerabilities discovered within font management systems.

June 2015 Patch Tuesday brings critical IE security fix, Flash update

Microsoft today released its June 2015 Patch Tuesday updates, delivering a total of eight bulletins that address 45 unique vulnerabilities. The two updates marked "critical" -- one each for Internet Explorer and Windows Media Player vulnerabilities that could result in remote code execution -- are paired with six "important" updates affecting Microsoft Office, Windows and Exchange Server.