iOS Archives

Endpoint Security

Apple Patches WebKit Flaws Exploited on Older iPhones

Apple's security response team warns that flaws CVE-2023-42916 and CVE-2023-42917 were already exploited against versions of iOS before iOS 16.7.1.

Ryan NaraineNovember 30, 2023

Endpoint Security

Apple Ships Major iOS, macOS Security Updates

Apple patches dozens of serious security flaws in its macOS and iOS platforms, warning that hackers could launch code execution exploits.

Ryan NaraineOctober 25, 2023

Malware & Threats

Stealth Techniques Used in ‘Operation Triangulation’ iOS Attack Dissected

Kaspersky analyzes the stealth techniques that were used in the ‘Operation Triangulation’ iOS zero-click attacks.

Ionut ArghireOctober 24, 2023

Mobile & Wireless

Apple Releases iOS 16 Update to Patch Exploited Vulnerability

Apple has released iOS 16.7.1 and iPadOS 16.7.1 to patch CVE-2023-42824, a kernel vulnerability that has been exploited in attacks.

Eduard KovacsOctober 12, 2023

Malware & Threats

Apple Warns of Newly Exploited iOS 17 Kernel Zero-Day

Apple’s cat-and-mouse struggles with zero-day exploits on its flagship iOS platform is showing no signs of slowing down.

Ryan NaraineOctober 4, 2023

Mobile & Wireless

Russian Zero-Day Acquisition Firm Offers $20 Million for Android, iOS Exploits

Russian zero-day acquisition firm Operation Zero is now offering $20 million for full Android and iOS exploit chains.

Ionut ArghireSeptember 28, 2023

Mobile & Wireless

Apple Patches Another Kernel Flaw Exploited in ‘Operation Triangulation’ Attacks

Apple patched another zero-day flaw used in the 'Operation Triangulation' exploit chain. iOS and macOS-powered devices are affected.

Ryan NaraineJuly 24, 2023

Incident Response

Apple Ships Urgent iOS Patch for WebKit Zero-Day

Apple rolls out urgent iOS and iPadOS software updates and warned that zero-day exploitation has already been detected.

Ryan NaraineJuly 10, 2023

Mobile & Wireless

Kaspersky Dissects Spyware Used in iOS Zero-Click Attacks

Russian anti-malware vendor shares technical details on spyware implant deployed as part of recent zero-click iMessage attacks.

Ionut ArghireJune 21, 2023

Cyberwarfare

Russia Blames US Intelligence for iOS Zero-Click Attacks

Kaspersky said its corporate network has been targeted with a zero-click iOS exploit, just as Russia's FSB said iPhones have been targeted by US...

Eduard KovacsJune 1, 2023

Malware & Threats

NSO Group Used at Least 3 iOS Zero-Click Exploits in 2022: Citizen Lab

NSO Group used at least three iOS zero-click exploits in Pegasus attacks in 2022: FindMyPwn, PwnYourHome, and LatentImage.

Eduard KovacsApril 18, 2023

Vulnerabilities

Apple Ships Urgent iOS Patch for Newly Exploited Zero-Days

The newest iOS 16.4.1 and iPadOS 16.4.1 patches a pair of code execution flaws that have already been exploited in the wild.

Ryan NaraineApril 7, 2023

SECURITYWEEK NETWORK:

ICS:

All posts tagged "iOS"

Endpoint Security

Apple Patches WebKit Flaws Exploited on Older iPhones

Endpoint Security

Apple Ships Major iOS, macOS Security Updates

Malware & Threats

Stealth Techniques Used in ‘Operation Triangulation’ iOS Attack Dissected

Mobile & Wireless

Apple Releases iOS 16 Update to Patch Exploited Vulnerability

Malware & Threats

Apple Warns of Newly Exploited iOS 17 Kernel Zero-Day

Mobile & Wireless

Russian Zero-Day Acquisition Firm Offers $20 Million for Android, iOS Exploits

Mobile & Wireless

Apple Patches Another Kernel Flaw Exploited in ‘Operation Triangulation’ Attacks

Incident Response

Apple Ships Urgent iOS Patch for WebKit Zero-Day

Mobile & Wireless

Kaspersky Dissects Spyware Used in iOS Zero-Click Attacks

Cyberwarfare

Russia Blames US Intelligence for iOS Zero-Click Attacks

Malware & Threats

NSO Group Used at Least 3 iOS Zero-Click Exploits in 2022: Citizen Lab

Vulnerabilities

Apple Ships Urgent iOS Patch for Newly Exploited Zero-Days

Featured

Supply Chain Security

Impact, Root Cause of GitHub Actions Supply Chain Hack Revealed

Mobile & Wireless

Paragon Spyware Attacks Exploited WhatsApp Zero-Day

Cloud Security

What’s Behind Google’s $32 Billion Wiz Acquisition?

Phishing

Scareware Combined With Phishing in Attacks Targeting macOS Users

Funding/M&A

Google to Acquire Cloud Security Giant Wiz for $32 Billion in Cash

Artificial Intelligence

ChatGPT Tool Vulnerability Exploited Against US Government Organizations

Artificial Intelligence

Nvidia Patches Vulnerabilities That Could Let Hackers Exploit AI Services

Latest News

Vulnerabilities

In Other News: Critical Chrome Bug, Capital One Hacker Resententencing, Story of Expat Flaw

Data Breaches

Ransomware Group Claims Attack on Virginia Attorney General’s Office

Supply Chain Security

Watch on Demand: Supply Chain & Third-Party Risk Security Summit

Artificial Intelligence

New Jailbreak Technique Uses Fictional World to Manipulate AI

Nation-State

Chinese I-Soon Hackers Hit 7 Organizations in Operation FishMedley

Cloud Security

Industry Reactions to Google Buying Wiz: Feedback Friday

Data Breaches

Ransomware Group Claims Attacks on Ascom, Jaguar Land Rover

Daily Briefing Newsletter