July 31, 2024 at 03:32PM Apple released updates for its products to address vulnerabilities in Siri and digital assistants across its devices. The updates aim to prevent unauthorized access to sensitive data, such as contacts, even when the device is locked. Users are advised to update to iOS 17.6 and iPadOS 17.6 to mitigate these … Read more
July 11, 2024 at 03:58PM Apple issued alerts to iPhone users in 98 countries regarding potential mercenary spyware attacks, without disclosing attackers’ identities or specific target countries. This is the second warning since April. Recipients were urged to take the warning seriously, with Apple highlighting the sensitive nature of their threat identification methods. From the … Read more
May 13, 2024 at 05:50PM Apple has backported security patches to older iPhones and iPads, fixing an iOS Kernel zero-day vulnerability actively exploited in attacks. The flaw allows attackers to bypass memory protections. The company also addressed two other zero-day vulnerabilities and added support for unwanted tracking alerts in the latest iOS update. From the … Read more
March 27, 2024 at 06:14PM Summary: ‘Darcula’ is a sophisticated phishing-as-a-service (PhaaS) using 20,000 domains to target Android and iPhone users in over 100 countries. It employs modern techniques like RCS and iMessage to send phishing messages and offers over 200 templates. Cybercriminals are adapting to legislation by embracing alternative protocols but face challenges. Users … Read more
March 22, 2024 at 03:27AM The U.S. Department of Justice and 16 state attorneys general accused Apple of maintaining a smartphone monopoly undermining user security and privacy. The lawsuit charges Apple with selectively compromising privacy and security for financial gain. It also highlights limited encryption for non-iPhone users. Apple faces scrutiny over its closed ecosystem … Read more
March 5, 2024 at 04:39PM Summary: Apple released an update on 2024-03-05 addressing a memory corruption issue (CVE-2024-23225) in the kernel, which could enable an attacker to bypass kernel memory protections. The affected products include iPhone 8, iPhone 8 Plus, iPhone X, iPad 5th generation, iPad Pro 9.7-inch, and iPad Pro 12.9-inch 1st generation. The … Read more
March 5, 2024 at 04:00PM Apple released urgent iOS updates, including iOS 17.4 and iPadOS 17.4, to address multiple security flaws and potential zero-day exploits in the wild. The vulnerabilities, including kernel and RTKit issues, could bypass memory protections. Additionally, the company patched privacy flaws and warned of more fixes to come. Exploited iOS versions … Read more
November 30, 2023 at 02:54PM Apple’s security team reports that older iOS versions, prior to 16.7.1, were exploited due to flaws CVE-2023-42916 and CVE-2023-42917. Patches for these WebKit vulnerabilities have been released for affected iPhones. Meeting Takeaways: 1. Apple’s security response team has identified that vulnerabilities designated as CVE-2023-42916 and CVE-2023-42917 have been exploited. 2. … Read more
October 26, 2023 at 12:21PM Researchers have discovered a new side-channel attack called iLeakage that exploits Safari to extract sensitive information from Macs and iPhones. The attack requires the user to be lured to a malicious website, which then automatically opens the targeted site. The researchers demonstrated how it can steal passwords, Instagram credentials, email … Read more