iPhones now auto-restart to block access to encrypted data after long idle times

November 11, 2024 at 07:19PM Apple’s iOS 18.1 update introduces a security feature that automatically reboots iPhones after extended idle times. This process re-encrypts data, enhancing protection against unauthorized access and making it more challenging to extract sensitive information. **Meeting Notes Takeaways:** 1. **New Security Feature**: Apple has introduced a new security feature with the … Read more

Apple Releases Critical iOS and iPadOS Updates to Fix VoiceOver Password Vulnerability

October 5, 2024 at 01:30AM Apple has released iOS and iPadOS updates addressing two security issues. One flaw could enable VoiceOver to read out a user’s passwords, impacting various iPhone and iPad models. Another vulnerability allowed capturing audio before the microphone indicator is on. Users are urged to update to iOS 18.0.1 and iPadOS 18.0.1 … Read more

Siri Bug Enables Data Theft on Locked Apple Devices

July 31, 2024 at 03:32PM Apple released updates for its products to address vulnerabilities in Siri and digital assistants across its devices. The updates aim to prevent unauthorized access to sensitive data, such as contacts, even when the device is locked. Users are advised to update to iOS 17.6 and iPadOS 17.6 to mitigate these … Read more

Apple Warns iPhone Users in 98 Countries of More Spyware Attacks

July 11, 2024 at 03:58PM Apple issued alerts to iPhone users in 98 countries regarding potential mercenary spyware attacks, without disclosing attackers’ identities or specific target countries. This is the second warning since April. Recipients were urged to take the warning seriously, with Apple highlighting the sensitive nature of their threat identification methods. From the … Read more

Apple backports fix for RTKit iOS zero-day to older iPhones

May 13, 2024 at 05:50PM Apple has backported security patches to older iPhones and iPads, fixing an iOS Kernel zero-day vulnerability actively exploited in attacks. The flaw allows attackers to bypass memory protections. The company also addressed two other zero-day vulnerabilities and added support for unwanted tracking alerts in the latest iOS update. From the … Read more

New Darcula phishing service targets iPhone users via iMessage

March 27, 2024 at 06:14PM Summary: ‘Darcula’ is a sophisticated phishing-as-a-service (PhaaS) using 20,000 domains to target Android and iPhone users in over 100 countries. It employs modern techniques like RCS and iMessage to send phishing messages and offers over 200 templates. Cybercriminals are adapting to legislation by embracing alternative protocols but face challenges. Users … Read more

U.S. Justice Department Sues Apple Over Monopoly and Messaging Security

March 22, 2024 at 03:27AM The U.S. Department of Justice and 16 state attorneys general accused Apple of maintaining a smartphone monopoly undermining user security and privacy. The lawsuit charges Apple with selectively compromising privacy and security for financial gain. It also highlights limited encryption for non-iPhone users. Apple faces scrutiny over its closed ecosystem … Read more

About the security content of iOS 16.7.6 and iPadOS 16.7.6 – Apple Support

March 5, 2024 at 04:39PM Summary: Apple released an update on 2024-03-05 addressing a memory corruption issue (CVE-2024-23225) in the kernel, which could enable an attacker to bypass kernel memory protections. The affected products include iPhone 8, iPhone 8 Plus, iPhone X, iPad 5th generation, iPad Pro 9.7-inch, and iPad Pro 12.9-inch 1st generation. The … Read more

Apple Blunts Zero-Day Attacks With iOS 17.4 Update

March 5, 2024 at 04:00PM Apple released urgent iOS updates, including iOS 17.4 and iPadOS 17.4, to address multiple security flaws and potential zero-day exploits in the wild. The vulnerabilities, including kernel and RTKit issues, could bypass memory protections. Additionally, the company patched privacy flaws and warned of more fixes to come. Exploited iOS versions … Read more

Apple Patches WebKit Flaws Exploited on Older iPhones

November 30, 2023 at 02:54PM Apple’s security team reports that older iOS versions, prior to 16.7.1, were exploited due to flaws CVE-2023-42916 and CVE-2023-42917. Patches for these WebKit vulnerabilities have been released for affected iPhones. Meeting Takeaways: 1. Apple’s security response team has identified that vulnerabilities designated as CVE-2023-42916 and CVE-2023-42917 have been exploited. 2. … Read more