Vulnerabilities Apple Patches Code Execution Vulnerability in iOS, macOS Apple has released iOS 17.4.1 and macOS Sonoma 14.4.1 with patches for an arbitrary code execution vulnerability. Ionut ArghireMarch 26, 2024
Data Protection New ‘GoFetch’ Apple CPU Attack Exposes Crypto Keys Researchers detail GoFetch, a new side-channel attack impacting Apple CPUs that could allow an attacker to obtain secret keys. Eduard KovacsMarch 22, 2024
Vulnerabilities Apple Shortcuts Vulnerability Exposes Sensitive Information High-severity vulnerability in Apple Shortcuts could lead to sensitive information leak without user’s knowledge. Ionut ArghireFebruary 23, 2024
Data Protection Apple Adds Post-Quantum Encryption to iMessage Apple unveils PQ3, a new post-quantum cryptographic protocol for iMessage designed to protect communications against quantum computing attacks. Eduard KovacsFebruary 21, 2024
Vulnerabilities Apple Patches Keystroke Injection Vulnerability in Magic Keyboard Apple’s latest Magic Keyboard firmware addresses a recently disclosed Bluetooth keyboard injection vulnerability. Ionut ArghireJanuary 12, 2024
Mobile & Wireless China Says State-Backed Experts Crack Apple’s AirDrop Chinese state-backed experts have found a way to identify people who use Apple's encrypted AirDrop messaging service, according to the Beijing municipal government. AFPJanuary 10, 2024
Mobile & Wireless Apple Testing New Stolen Device Protection Feature for iPhones Apple is testing a new security feature that should limit what iPhone thieves can do with a stolen phone, even if they have the... Eduard KovacsDecember 13, 2023
Mobile & Wireless Apple Ships iOS 17.2 With Urgent Security Patches Cupertino’s flagship mobile OS vulnerable to arbitrary code execution and data exposure security vulnerabilities. Ryan NaraineDecember 11, 2023
Data Breaches Apple Commissions Data Breach Study to Highlight Need for End-to-End Encryption A study commissioned by Apple shows that 2.6 billion personal data records were compromised in breaches in the past two years. Eduard KovacsDecember 7, 2023
Data Protection Trail of Bits Spinout iVerify Tackles Mercenary Spyware Threat iVerify, a seed-stage startup spun out of Trail of Bits, ships a mobile threat hunting platform to neutralize iOS and Android zero-days. Ryan NaraineDecember 6, 2023
Endpoint Security Apple Patches WebKit Flaws Exploited on Older iPhones Apple's security response team warns that flaws CVE-2023-42916 and CVE-2023-42917 were already exploited against versions of iOS before iOS 16.7.1. Ryan NaraineNovember 30, 2023
Data Protection Apple Improves iMessage Security With Contact Key Verification New capability detects attacks on iMessage servers and allows users to verify a conversation partner’s identity. Ionut ArghireOctober 30, 2023