Recent Security News
-
Flipper Zero WiFi phishing attack can steal Tesla accounts, cars
March 7, 2024 at 02:41PM Researchers Talal Haj Bakry and Tommy Mysk discovered a vulnerability in Tesla’s security, allowing a phishing attack using a Flipper Zero or similar devices to compromise accounts, unlock and start cars. By deploying a fake Tesla Guest WiFi network, attackers can extract credentials, bypass two-factor authentication, and add a new…
-
About the security content of Safari 17.4 – Apple Support
March 7, 2024 at 02:15PM Summary: Multiple security issues (CVE-2024-23273, 23252, 23254, 23263, 23280, 23284) were addressed with improved state management, memory handling, UI handling, and validation in WebKit. These issues impact Safari Private Browsing and could result in unauthorized access to private tabs, denial-of-service, audio data exfiltration, and user fingerprinting. Updates are available for…
-
About the security content of macOS Monterey 12.7.4 – Apple Support
March 7, 2024 at 01:51PM Summary: CVE-2024-23276: Logic issue fixed in Admin Framework, allowing app privilege elevation. CVE-2024-23227: Improved redaction in Airport to prevent sensitive location access. CVE-2024-23269: Code-signing fix in AppleMobileFileIntegrity to prevent file system modification. Other CVEs address various memory, privacy, and access issues, now updated in macOS Monterey. Based on the meeting…
-
About the security content of macOS Sonoma 14.4 – Apple Support
March 7, 2024 at 01:51PM The following security issues have been addressed in the macOS Sonoma update: privacy concerns, privilege elevation, arbitrary code execution, denial-of-service vulnerabilities, and access to sensitive data. Multiple products, including Accessibility, Bluetooth, CoreBluetooth – LE, Photos, Safari, Siri, WebKit, among others, have been updated. Users are urged to install the update…
-
About the security content of macOS Ventura 13.6.5 – Apple Support
March 7, 2024 at 01:51PM Summary: Numerous security vulnerabilities have been addressed in macOS Monterey, including logic issues, memory handling improvements, and input validation enhancements impacting various products such as Admin Framework, Airport, and Kernel. These updates aim to prevent privilege elevation, sensitive information exposure, and unauthorized access to the file system. From the meeting…