November 19, 2024 at 03:38AM Apple’s iOS 18 introduces a security feature that reboots devices after 72 hours of inactivity, enhancing data protection by keeping files encrypted in Before First Unlock (BFU) mode. This reduces access risks for stolen devices, impacting both criminals and forensic analysts, while emphasizing the urgency for law enforcement data extraction. … Read more
October 31, 2024 at 11:21AM Researchers have identified an advanced iOS spyware, LightSpy, which enhances its capabilities and includes destructive functions that can render infected devices unbootable. First discovered in 2020, it captures sensitive data and utilizes various plugins. Suspected to be operated by Chinese attackers, it exploits known security vulnerabilities in Apple’s systems. ### … Read more
October 29, 2024 at 05:37AM Apple has launched security updates for iOS 18 and macOS Sequoia 15, fixing over 70 vulnerabilities. These updates enhance the security of various Apple products. **Meeting Takeaways:** 1. **Security Updates Released**: Apple has issued security updates for both iOS 18 and macOS Sequoia 15. 2. **Purpose of Updates**: These updates … Read more
October 28, 2024 at 12:06PM Apple will release iOS 18.1 on October 28, 2024, addressing multiple vulnerabilities affecting devices such as iPhone XS and later. Key issues include improved authentication for physical access vulnerabilities, better handling of symlinks, and enhanced input validation to prevent memory corruption and unauthorized access to sensitive data. ### Meeting Takeaways … Read more
October 28, 2024 at 12:00PM Multiple vulnerabilities affecting macOS Sequoia 15.1 have been identified and addressed, including issues related to sandbox bypasses, logic flaws, and path deletions. Improvements in data redaction and validation were implemented to mitigate risks. Updates are available to enhance system security against potential exploitation. Release date is October 28, 2024. ### … Read more
October 28, 2024 at 12:00PM An update for iOS 17.7.1 and iPadOS 17.7.1 addresses multiple vulnerabilities affecting various iPhone and iPad models. Issues include improved authentication, checks against unauthorized data access, and prevention of sensitive information disclosure and denial of service. Users are encouraged to update their devices. Release date: October 28, 2024. ### Meeting … Read more
October 24, 2024 at 06:52PM Apple has launched a Virtual Research Environment (VRE) for public testing of its Private Cloud Compute (PCC) system, enhancing security through a $1 million bounty program for vulnerability findings. The source code for key components is available, allowing researchers to analyze and verify PCC’s privacy and security features. ### Meeting … Read more
October 21, 2024 at 01:46PM Apple is expanding its Security Research Device Program by providing hackable iPhones to select university educators, enhancing educational opportunities in cybersecurity. This initiative aims to facilitate research and development in security practices within academic institutions. **Meeting Notes Takeaways:** – Apple is expanding its Security Research Device Program. – The initiative … Read more
October 21, 2024 at 09:40AM Microsoft warns macOS users to update systems due to a vulnerability (CVE-2024-44133) in Safari that could allow malware to exploit privacy settings. Attackers may access cameras, microphones, and user locations. The bug breaches Apple’s Transparency, Consent, and Control protections, which Microsoft is actively working to address. ### Meeting Takeaways Summary: … Read more
October 18, 2024 at 05:31PM A security flaw in Safari on macOS, known as CVE-2024-44133, may allow attackers to bypass security measures, potentially exposing sensitive user data and media access. Researchers from Microsoft have detected signs of exploitation by adware like AdLoad. Apple issued a fix in September, highlighting the need for users to update … Read more