Apple Archives

Vulnerabilities

Apple Patches Code Execution Vulnerability in iOS, macOS

Apple has released iOS 17.4.1 and macOS Sonoma 14.4.1 with patches for an arbitrary code execution vulnerability.

Ionut ArghireMarch 26, 2024

Data Protection

New ‘GoFetch’ Apple CPU Attack Exposes Crypto Keys

Researchers detail GoFetch, a new side-channel attack impacting Apple CPUs that could allow an attacker to obtain secret keys.

Eduard KovacsMarch 22, 2024

Vulnerabilities

Apple Shortcuts Vulnerability Exposes Sensitive Information

High-severity vulnerability in Apple Shortcuts could lead to sensitive information leak without user’s knowledge.

Ionut ArghireFebruary 23, 2024

Apple PQ3 quantum encryption for iMessage

Data Protection

Apple Adds Post-Quantum Encryption to iMessage

Apple unveils PQ3, a new post-quantum cryptographic protocol for iMessage designed to protect communications against quantum computing attacks.

Eduard KovacsFebruary 21, 2024

Vulnerabilities

Apple Patches Keystroke Injection Vulnerability in Magic Keyboard

Apple’s latest Magic Keyboard firmware addresses a recently disclosed Bluetooth keyboard injection vulnerability.

Ionut ArghireJanuary 12, 2024

China says state-backed experts crack Apple's AirDrop

Mobile & Wireless

China Says State-Backed Experts Crack Apple’s AirDrop

Chinese state-backed experts have found a way to identify people who use Apple's encrypted AirDrop messaging service, according to the Beijing municipal government.

AFPJanuary 10, 2024

Mobile & Wireless

Apple Testing New Stolen Device Protection Feature for iPhones

Apple is testing a new security feature that should limit what iPhone thieves can do with a stolen phone, even if they have the...

Eduard KovacsDecember 13, 2023

Mobile & Wireless

Apple Ships iOS 17.2 With Urgent Security Patches

Cupertino’s flagship mobile OS vulnerable to arbitrary code execution and data exposure security vulnerabilities.

Ryan NaraineDecember 11, 2023

Data Breaches

Apple Commissions Data Breach Study to Highlight Need for End-to-End Encryption

A study commissioned by Apple shows that 2.6 billion personal data records were compromised in breaches in the past two years.

Eduard KovacsDecember 7, 2023

Data Protection

Trail of Bits Spinout iVerify Tackles Mercenary Spyware Threat

iVerify, a seed-stage startup spun out of Trail of Bits, ships a mobile threat hunting platform to neutralize iOS and Android zero-days.

Ryan NaraineDecember 6, 2023

Endpoint Security

Apple Patches WebKit Flaws Exploited on Older iPhones

Apple's security response team warns that flaws CVE-2023-42916 and CVE-2023-42917 were already exploited against versions of iOS before iOS 16.7.1.

Ryan NaraineNovember 30, 2023

Data Protection

Apple Improves iMessage Security With Contact Key Verification

New capability detects attacks on iMessage servers and allows users to verify a conversation partner’s identity.

Ionut ArghireOctober 30, 2023

SECURITYWEEK NETWORK:

ICS:

All posts tagged "Apple"

Vulnerabilities

Apple Patches Code Execution Vulnerability in iOS, macOS

Data Protection

New ‘GoFetch’ Apple CPU Attack Exposes Crypto Keys

Vulnerabilities

Apple Shortcuts Vulnerability Exposes Sensitive Information

Data Protection

Apple Adds Post-Quantum Encryption to iMessage

Vulnerabilities

Apple Patches Keystroke Injection Vulnerability in Magic Keyboard

Mobile & Wireless

China Says State-Backed Experts Crack Apple’s AirDrop

Mobile & Wireless

Apple Testing New Stolen Device Protection Feature for iPhones

Mobile & Wireless

Apple Ships iOS 17.2 With Urgent Security Patches

Data Breaches

Apple Commissions Data Breach Study to Highlight Need for End-to-End Encryption

Data Protection

Trail of Bits Spinout iVerify Tackles Mercenary Spyware Threat

Endpoint Security

Apple Patches WebKit Flaws Exploited on Older iPhones

Data Protection

Apple Improves iMessage Security With Contact Key Verification

Featured

Incident Response

Palo Alto Networks Shares Remediation Advice for Hacked Firewalls

Vulnerabilities

CISA Warns of Windows Print Spooler Flaw After Microsoft Sees Russian Exploitation

Threat Intelligence

The Battle Continues: Mandiant Report Shows Improved Detection But Persistent Adversarial Success

Data Protection

Microsoft DRM Hack Could Allow Movie Downloads From Popular Streaming Services

Nation-State

MITRE Hacked by State-Sponsored Group via Ivanti Zero-Days

Cybercrime

Frontier Communications Shuts Down Systems Following Cyberattack

Cybercrime

Phishing Platform LabHost Shut Down by Law Enforcement

Latest News

Artificial Intelligence

Predictive Security Startup BforeAI Raises $15 Million

Phishing

Autodesk Drive Abused in Phishing Attacks

Data Protection

FTC Sending $5.6 Million in Refunds to Ring Customers Over Security Failures

Vulnerabilities

Vulnerabilities Expose Brocade SAN Appliances, Switches to Hacking

Cybersecurity Funding

Endpoint Security Firm ThreatLocker Raises $115 Million in Series D Funding

Funding/M&A

IBM Acquiring HashiCorp for $6.4 Billion

Artificial Intelligence

Cisco Systems Joins Microsoft, IBM in Vatican Pledge to Ensure Ethical Use and Development of AI