July 31, 2024 at 03:32PM Apple released updates for its products to address vulnerabilities in Siri and digital assistants across its devices. The updates aim to prevent unauthorized access to sensitive data, such as contacts, even when the device is locked. Users are advised to update to iOS 17.6 and iPadOS 17.6 to mitigate these … Read more
July 9, 2024 at 01:04PM Adobe has released critical patches for code execution bugs in Adobe Premiere Pro, Adobe InDesign, and Adobe Bridge on Windows and macOS. The vulnerabilities pose significant security risks. This information was reported by SecurityWeek. Based on the meeting notes, it seems that Adobe has identified at least seven code execution … Read more
July 1, 2024 at 01:18PM Security flaws in CocoaPods were discovered, allowing attackers to hijack and insert malicious code into popular iOS and macOS applications, posing serious supply chain risks. The vulnerabilities were patched in October 2023, but the issues stemmed from a 2014 migration, leading to unclaimed pods and flawed verification processes. Downstream customers … Read more
January 31, 2024 at 02:08PM CISA warned of actively exploited kernel security flaw in Apple iPhones, Macs, TVs, and watches (CVE-2022-48618), allowing attackers to bypass Pointer Authentication. Apple addressed the flaw in iOS 16.2, macOS Ventura, and others. Devices affected include iPhone 8 and later, iPads, Macs, Apple TVs, and Apple Watches. Federal agencies ordered … Read more
January 22, 2024 at 02:25PM Apple released security updates to address the first zero-day vulnerability of the year, tracked as CVE-2024-23222, impacting iPhones, Macs, and Apple TVs. The WebKit confusion issue could be exploited by attackers, leading to arbitrary code execution. Devices running vulnerable iOS, macOS, and tvOS versions are affected. Security updates are available … Read more
January 17, 2024 at 11:26AM Info-stealers like KeySteal, Atomic Infostealer, and CherryPie are increasingly targeting macOS by evading Apple’s built-in malware protection. These sophisticated stealers have evolved with new variants that can bypass detection engines, such as macOS’s XProtect. Even with recent updates, these malware strains pose a continued threat, necessitating ongoing vigilance from macOS … Read more
December 12, 2023 at 12:30PM Apple has introduced a new iMessage Contact Key Verification feature aimed at preventing impersonators and sophisticated attackers from abusing its iMessage service. The feature allows users to verify their contacts and receive alerts for verification errors. This update also includes patches for multiple serious vulnerabilities in iOS and macOS platforms. … Read more
December 12, 2023 at 02:18AM Apple has released security patches for multiple products, including iOS, iPadOS, macOS, tvOS, watchOS, and Safari browser. The updates address numerous security flaws, including two recent zero-day vulnerabilities. Vulnerabilities range from keystroke injection to arbitrary code execution. The updates also include improvements in privacy protection and address actively exploited security … Read more
December 8, 2023 at 05:36AM A new Trojan-Proxy malware targeting macOS users is spreading via pirated software from unauthorized websites. Kaspersky uncovered a cross-platform threat that also affects Windows and Android. The malware, disguised as legitimate software, uses .PKG installers with malicious scripts. It aims to use infected devices as proxy servers for criminal activities. … Read more
December 7, 2023 at 02:34PM A new proxy Trojan targeting macOS users via pirated software creates a covert proxy server to enable backdoor access and illicit activities, Kaspersky reports. The Trojan, also found for Android and Windows, uses DNS-over-HTTPS to evade detection. Experts advise using antiviruses and avoiding pirated software to prevent attacks. Meeting Takeaways: … Read more