Tag: apple
-
Apple’s 2026 Security Program Could Change iPhone Safety
Apple opens 2026 Security Research Device applications, giving experts loaned iPhones to hunt iOS flaws. First seen on esecurityplanet.com Jump to article: www.esecurityplanet.com/applications/apples-2026-security-program-could-change-iphone-safety/
-
France Warns Apple Users of New Spyware Campaign
Apple has sent at least four notifications in 2025, according to the French national cybersecurity agency First seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/france-apple-spyware-campaign/
-
Apple issues spyware warnings as CERT-FR confirms attacks
Apple warned users of a spyware campaign; France’s cyber agency confirmed targeted iCloud-linked devices may be compromised. Apple warned customers last week about new spyware attacks, the French national Computer Emergency Response Team (CERT-FR) said. The agency confirmed at least four such alerts since early 2025. Apple sent spyware alerts on March 5, April 29,…
-
Spionage auf dem iPhone: Neue Spyware-Attacken treffen Apple-Nutzer
Seit 2021 hat Apple bereits Betroffene aus über 150 Ländern vor Spyware-Attacken gewarnt. Die jüngste Angriffswelle ist schon die vierte in diesem Jahr. First seen on golem.de Jump to article: www.golem.de/news/spionage-auf-dem-iphone-neue-spyware-attacken-treffen-apple-nutzer-2509-200027.html
-
Apple Warns of Mercenary Spyware Attacks Targeting User Devices
Apple has issued urgent warnings about sophisticated spyware attacks targeting specific users worldwide, including journalists, activists, politicians, and diplomats. Mercenary spyware attacks differ significantly from regular cybercriminal activity. These attacks cost millions of dollars and target only a small number of individuals based on their profession or status. The attacks are often linked to state…
-
Apple’s latest iPhone security feature just made life more difficult for spyware makers
Apple launched a new security feature for iPhone 17 and iPhone Air designed to reduce the effect of memory corruption bugs, and in turn make spyware and zero-days more difficult to hack into iPhones. First seen on techcrunch.com Jump to article: techcrunch.com/2025/09/11/apples-latest-iphone-security-feature-just-made-life-more-difficult-for-spyware-makers/
-
Apple CarPlay RCE Exploit Left Unaddressed in Most Cars
Even when a vulnerability is serious and a fix is available, actually securing cars is more difficult than one would hope. First seen on darkreading.com Jump to article: www.darkreading.com/vulnerabilities-threats/apple-carplay-rce-exploit
-
Apple warns customers targeted in recent spyware attacks
Apple warned customers last week that their devices were targeted in a new series of spyware attacks, according to the French national Computer Emergency Response Team (CERT-FR). First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/apple-warns-customers-targeted-in-recent-spyware-attacks/
-
France says Apple notified victims of new spyware attacks
The French government says Apple sent out threat notifications to customers alerting them to spyware attacks earlier in September. First seen on techcrunch.com Jump to article: techcrunch.com/2025/09/11/france-says-apple-notified-victims-of-new-spyware-attacks/
-
Apple’s Big Bet to Eliminate the iPhone’s Most Targeted Vulnerabilities
Alongside new iPhones, Apple released a new security architecture on Tuesday: Memory Integrity Enforcement aims to eliminate the most frequently exploited class of iOS bugs. First seen on wired.com Jump to article: www.wired.com/story/apple-iphone-17-memory-integrity-enforcement/
-
Apple slips up on ChillyHell macOS malware, lets it past security . . . for 4 years
‘We do believe that this was likely the creation of a cybercrime group,’ threat hunter tells The Reg First seen on theregister.com Jump to article: www.theregister.com/2025/09/10/chillyhell_modular_macos_malware/
-
Apple’s new Memory Integrity Enforcement system deals a huge blow to spyware developers
The system, a five-year effort to address memory safety “at scale,” is the result of spyware developers making zero-click exploits that targeted a device’s memory. First seen on cyberscoop.com Jump to article: cyberscoop.com/apple-memory-integrity-enforcement-iphone-ios-anti-spyware/
-
Apple CarPlay Vulnerability Allows Remote Code Execution to Gain Root Access
A newly disclosed vulnerability in Apple’s CarPlay ecosystem enablesremote code execution with root privileges, posing a serious risk to connected vehicles. Discovered by the Oligo Security Research team and tracked asCVE-2025-24132, the flaw resides within the AirPlay protocol implementation used by CarPlay systems. CVE ID Affected Components Versions Impacted CVE-2025-24132 AirPlay Audio SDK < 2.7.1…
-
Apple CarPlay Vulnerability Allows Remote Code Execution to Gain Root Access
A newly disclosed vulnerability in Apple’s CarPlay ecosystem enablesremote code execution with root privileges, posing a serious risk to connected vehicles. Discovered by the Oligo Security Research team and tracked asCVE-2025-24132, the flaw resides within the AirPlay protocol implementation used by CarPlay systems. CVE ID Affected Components Versions Impacted CVE-2025-24132 AirPlay Audio SDK < 2.7.1…
-
CHILLYHELL macOS Backdoor and ZynorRAT RAT Threaten macOS, Windows, and Linux Systems
Cybersecurity researchers have discovered two new malware families, including a modular Apple macOS backdoor called CHILLYHELL and a Go-based remote access trojan (RAT) named ZynorRAT that can target both Windows and Linux systems.According to an analysis from Jamf Threat Labs, ChillyHell is written in C++ and is developed for Intel architectures.CHILLYHELL is the name assigned…
-
CHILLYHELL macOS Backdoor and ZynorRAT RAT Threaten macOS, Windows, and Linux Systems
Cybersecurity researchers have discovered two new malware families, including a modular Apple macOS backdoor called CHILLYHELL and a Go-based remote access trojan (RAT) named ZynorRAT that can target both Windows and Linux systems.According to an analysis from Jamf Threat Labs, ChillyHell is written in C++ and is developed for Intel architectures.CHILLYHELL is the name assigned…
-
Apple iPhone Air and iPhone 17 Feature A19 Chips With Spyware-Resistant Memory Safety
Apple on Tuesday revealed a new security feature called Memory Integrity Enforcement (MIE) that’s built into its newly introduced iPhone models, including iPhone 17 and iPhone Air.MIE, per the tech giant, offers “always-on memory safety protection” across critical attack surfaces such as the kernel and over 70 userland processes without sacrificing device performance by designing…
-
Apple iPhone Air and iPhone 17 Feature A19 Chips With Spyware-Resistant Memory Safety
Apple on Tuesday revealed a new security feature called Memory Integrity Enforcement (MIE) that’s built into its newly introduced iPhone models, including iPhone 17 and iPhone Air.MIE, per the tech giant, offers “always-on memory safety protection” across critical attack surfaces such as the kernel and over 70 userland processes without sacrificing device performance by designing…
-
CHILLYHELL macOS Backdoor and ZynorRAT RAT Threaten macOS, Windows, and Linux Systems
Cybersecurity researchers have discovered two new malware families, including a modular Apple macOS backdoor called CHILLYHELL and a Go-based remote access trojan (RAT) named ZynorRAT that can target both Windows and Linux systems.According to an analysis from Jamf Threat Labs, ChillyHell is written in C++ and is developed for Intel architectures.CHILLYHELL is the name assigned…
-
macOS Under Attack: Atomic Stealer Hidden in Pirated Software
The cybersecurity landscape for macOS users has taken a dangerous turn as cybercriminals increasingly target Apple’s ecosystem with sophisticated malware campaigns. Atomic macOS Stealer (AMOS), a specialized data-theft malware, has emerged as one of the most significant threats to Mac users, particularly those seeking cracked software applications. While macOS has historically maintained a reputation as…
-
iCloud Calendar abused to send phishing emails from Apple’s servers
iCloud Calendar invites are being abused to send callback phishing emails disguised as purchase notifications directly from Apple’s email servers, making them more likely to bypass spam filters to land in targets’ inboxes. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/icloud-calendar-abused-to-send-phishing-emails-from-apples-servers/
-
macOS Stealer Campaign Uses “Cracked” App Lures to Bypass Apple Security
Trend Micro observed the attackers using terminal-based installation methods for the AMOS malware, luring macOS users into installing cracked versions of apps First seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/macos-stealer-cracked-apps-bypass/
-
macOS Stealer Campaign Uses “Cracked” App Lures to Bypass Apple Security
Trend Micro observed the attackers using terminal-based installation methods for the AMOS malware, luring macOS users into installing cracked versions of apps First seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/macos-stealer-cracked-apps-bypass/
-
Apple iOS 26 set to dump 75M iPhones on the e-waste pile
XR, XS, and XS Max owners left with $268M worth of scrap First seen on theregister.com Jump to article: www.theregister.com/2025/09/02/apple_ios_26_waste/
-
WhatsApp Bug Anchors Targeted Zero-Click iPhone Attacks
A sophisticated attack that also exploits an Apple zero-day flaw is targeting a specific group of iPhone users, potentially with spyware. First seen on darkreading.com Jump to article: www.darkreading.com/cyberattacks-data-breaches/whatsapp-bug-zero-click-iphone-attacks
-
Major IPTV Piracy Network Uncovered Spanning 1100 Domains
A massive IPTV privacy network has been uncovered distributing unlicensed content from major brands including Apple TV, Disney+, HBO, Netflix and more First seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/iptv-piracy-network-span-1100/
-
TDL 002 – Defending the DNS: How Quad9 Protects the Internet with John Todd
Tags: access, apple, attack, business, china, ciso, communications, control, country, crime, cyber, cybersecurity, data, defense, dns, email, encryption, firewall, google, ibm, india, infrastructure, intelligence, Internet, jobs, law, malicious, malware, network, phishing, privacy, service, strategy, technology, threat, tool, zero-trustSummary The Defender’s Log episode features John Todd from Quad9, discussing their mission to protect the internet through secure DNS. Quad9, a non-profit launched in 2017 with founding partners Global Cyber Alliance, Packet Clearing House, and IBM, provides a free, global recursive DNS resolver that blocks malicious domains. Todd emphasizes that Quad9’s success is a…
-
WhatsApp, Apple warn of highly targeted attacks with zero-day vulnerability
WhatsApp believes the vulnerability could have been combined with a separate OS-level vulnerability on Apple devices to potentially launch sophisticated attacks against “specific targeted users.” First seen on therecord.media Jump to article: therecord.media/whatsapp-apple-zero-day-targeted-attacks
-
WhatsApp, Apple warn of highly targeted attacks with zero-day vulnerability
WhatsApp believes the vulnerability could have been combined with a separate OS-level vulnerability on Apple devices to potentially launch sophisticated attacks against “specific targeted users.” First seen on therecord.media Jump to article: therecord.media/whatsapp-apple-zero-day-targeted-attacks