Tag: apple
-
‘AirBorne”-Sicherheitslücken: Milliarden Apple-Geräte in Gefahr
Sicherheitsforscher von Oligo Security haben 23 Sicherheitslücken in Apple AirPlay entdeckt, die Milliarden von Apple-Geräten der Gefahr von Datendiebstahl und unberechtigtem Zugriff aussetzen. First seen on 8com.de Jump to article: www.8com.de/cyber-security-blog/airborne–sicherheitslucken-milliarden-apple-gerate-in-gefahr
-
Softwareupdate – Apple schließt Zero-Day-Schwachstellen mit Patch für iOS 18
First seen on security-insider.de Jump to article: www.security-insider.de/apple-ios-update-zero-day-schwachstellen-carplay-probleme-a-39b0e75ade847564bacdfc2804a8d88b/
-
Wormable AirPlay Flaws Enable Zero-Click RCE on Apple Devices via Public Wi-Fi
Cybersecurity researchers have disclosed a series of now-patched security vulnerabilities in Apple’s AirPlay protocol that, if successfully exploited, could enable an attacker to take over susceptible devices supporting the proprietary wireless technology.The shortcomings have been collectively codenamed AirBorne by Israeli cybersecurity company Oligo.”These vulnerabilities can be chained by First seen on thehackernews.com Jump to article:…
-
Schwachstelle in Apples Find-My-Funktion – Forscher entwickeln Tool zur Ausnutzung von Satellitenkommunikation
First seen on security-insider.de Jump to article: www.security-insider.de/satellitenkommunikation-iphones-sicherheitsluecken-a-ea2f93f9cd06f042ead5634ebc3c5aee/
-
Billions of Apple Devices at Risk from “AirBorne” AirPlay Vulnerabilities
Oligo Security uncovers >>AirBorne,
-
Apple issues global spyware threat notifications
First seen on scworld.com Jump to article: www.scworld.com/brief/apple-issues-global-spyware-threat-notifications
-
Microsoft Switches to Passkeys By Default, Pledges to Eliminate Passwords
Apple and Google also pledged to use the FIDO Alliance’s standard for biometric or PIN logins as opposed to passwords. First seen on techrepublic.com Jump to article: www.techrepublic.com/article/news-microsoft-passwordless-world-password-day/
-
Cook’d: Judge says Apple lied to court in Epic case, asks Feds to mull criminal charges
CEO, senior execs ‘at every turn chose the most anti-competitive option’ First seen on theregister.com Jump to article: www.theregister.com/2025/05/01/apple_epic_lies_possible_crime/
-
Spionageangriffe erkannt: Apple warnt iPhone-Nutzer in 100 Ländern vor Spyware
Unzählige iPhone-Nutzer auf der ganzen Welt haben von Apple Spyware-Warnungen erhalten. Wer hinter den Angriffen steckt, ist allerdings unklar. First seen on golem.de Jump to article: www.golem.de/news/spionageangriffe-erkannt-apple-warnt-iphone-nutzer-in-100-laendern-vor-spyware-2505-195868.html
-
AirBorne: Schwachstellen in Apples AirPlay-Protokoll gefährden Geräte und Netzwerke
Apple Geräte (Macs, iPads, iPhones) unterstützen AirPlay zur Übertragung von Musik, Fotos und Videos zwischen Geräten. Schwachstellen im Protokoll ermöglichen es, per WiFi die AirPlay-Geräte anzugreifen und sich so im Netzwerk zu bewegen. Was ist AirPlay? AirPlay ist eine proprietäre … First seen on borncity.com Jump to article: www.borncity.com/blog/2025/05/02/airborne-schwachstellen-in-apples-airplay-protokoll-gefaehrden-geraete-und-netzwerke/
-
Apple notifies victims in 100 countries of likely spyware targeting
Two of the known victims are an Italian journalist and the right-wing Dutch author and pundit Eva Vlaardingerbroek. First seen on therecord.media Jump to article: therecord.media/apple-spyware-victims-notified-countries
-
Apple notifies new victims of spyware attacks across the world
Two alleged victims came forward claiming they received a spyware notification from Apple. First seen on techcrunch.com Jump to article: techcrunch.com/2025/04/30/apple-notifies-new-victims-of-spyware-attacks-across-the-world/
-
23 Apple AirPlay Vulnerabilities ‘Could Have Far-Reaching Impacts’
The so-called “AirBorne” flaws enable zero-click attacks and device takeover on local networks. First seen on techrepublic.com Jump to article: www.techrepublic.com/article/news-apple-airplay-airborne-vulnerabilities/
-
Apple Passwords Review (2025): Features, Pricing, and Security
Apple Passwords provides robust security features, but is it capable of safeguarding your sensitive data? First seen on techrepublic.com Jump to article: www.techrepublic.com/article/apple-passwords-review/
-
AirBorne flaws can lead to fully hijack Apple devices
Vulnerabilities in Apple’s AirPlay protocol and SDK exposed Apple and third-party devices to attacks, including remote code execution. Oligo Security found serious flaws, collectively tracked as AirBorne, in Apple’s AirPlay protocol and SDK, affecting Apple and third-party devices. Attackers can exploit the vulnerabilities to perform zero-/one-click RCE, bypass ACLs, read local files, steal data, and…
-
Wormable AirPlay Zero-Click RCE Flaw Allows Remote Device Hijack via Wi-Fi
A major set of vulnerabilities-collectively named “AirBorne”-in Apple’s AirPlay protocol and SDK have been unveiled, enabling an array of severe attack vectors. Most critically, these flaws allow zero-click “wormable” Remote Code Execution (RCE), meaning attackers can take over Apple and third-party devices via Wi-Fi without any user interaction. The impact spans billions of devices globally, including…
-
AirBorne and Dangerous: Hacking Through the Soundwaves
Researchers Uncover Bugs in Apple’s AirPlay, Risking Takeover of Smart Devices. Vulnerabilities in wireless streaming protocol AirPlay could expose Apple operating system devices to remote code execution by enabling attackers to infiltrate networks through trusted connections. The flaws are in the software development kit used by third-party manufacturers. First seen on govinfosecurity.com Jump to article:…
-
Apple ‘AirBorne’ flaws can lead to zero-click AirPlay RCE attacks
Tags: apple, attack, data-breach, flaw, programming, rce, remote-code-execution, software, vulnerabilityA set of security vulnerabilities in Apple’s AirPlay Protocol and AirPlay Software Development Kit (SDK) exposed unpatched third-party and Apple devices to various attacks, including remote code execution. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/apple-airborne-flaws-can-lead-to-zero-click-airplay-rce-attacks/
-
Enterprise-specific zero-day exploits on the rise, Google warns
Tags: access, apple, apt, attack, china, cisco, cloud, crime, crimes, cyberespionage, detection, endpoint, exploit, finance, flaw, google, group, Hardware, incident response, injection, Internet, ivanti, korea, lessons-learned, mandiant, microsoft, mitigation, network, north-korea, remote-code-execution, russia, service, strategy, technology, threat, tool, update, vpn, vulnerability, zero-daySurge in network edge device exploitation: Of the 33 zero-day vulnerabilities in enterprise-specific products, 20 targeted hardware appliances typically located at the network edge, such as VPNs, security gateways, and firewalls. Notable targets last year included Ivanti Cloud Services Appliance, Palo Alto Networks’ PAN-OS, Cisco Adaptive Security Appliance, and Ivanti Connect Secure VPN.Targeted attacks against…
-
Millions of Apple Airplay-Enabled Devices Can Be Hacked via Wi-Fi
Researchers reveal a collection of bugs known as AirBorne that would allow any hacker on the same Wi-Fi network as a third-party AirPlay-enabled device to surreptitiously run their own code on it. First seen on wired.com Jump to article: www.wired.com/story/airborne-airplay-flaws/
-
Keeper Security optimiert Browser-Erweiterung
Die neue Browser-Erweiterung Keeper 17.1 ist ab sofort im Chrome Web Store, Apple App Store, Microsoft Edge Add-ons Store sowie im Firefox Add-ons Store verfügbar. First seen on infopoint-security.de Jump to article: www.infopoint-security.de/keeper-security-optimiert-browser-erweiterung/a40607/
-
New iOS Vulnerability Could Brick iPhones with Just One Line of Code
A security researcher has uncovered a critical vulnerability in iOS, Apple’s flagship mobile operating system. The flaw, CVE-2025-24091, which leverages the long-standing but little-known >>Darwin notification
-
Microsoft’s New Model Aims to Do More With Less
BitNet b1.58 2B4T Focuses on Speed, Efficiency, Open Access. Microsoft released what it describes as the most expansive 1-bit AI model to date, BitNet b1.58 2B4T. Unlike traditional large language models that depend on GPUs and massive infrastructure, the model is built to operate efficiently on CPUs including Apple’s M2 chip. First seen on govinfosecurity.com…
-
Apple Zero-Days Under ‘Sophisticated Attack,’ but Details Lacking
The technology giant said two zero-day vulnerabilities were used in attacks on iOS devices against specific targeted individuals, which suggests spyware or nation-state threat activity. First seen on darkreading.com Jump to article: www.darkreading.com/vulnerabilities-threats/apple-zero-days-sophisticated-attacks
-
U.S. CISA adds Apple products and Microsoft Windows NTLM flaws to its Known Exploited Vulnerabilities catalog
Tags: apple, cisa, cybersecurity, exploit, flaw, infrastructure, kev, microsoft, ntlm, vulnerability, windowsU.S. Cybersecurity and Infrastructure Security Agency (CISA) adds Apple products and Microsoft Windows NTLM flaws to its Known Exploited Vulnerabilities catalog. The U.S. Cybersecurity and Infrastructure Security Agency (CISA) added Apple products and Microsoft Windows NTLM vulnerabilities to its Known Exploited Vulnerabilities (KEV) catalog. Below are the descriptions of the flaws: This week Apple released out”‘of”‘band…
-
CISA Issues Alert on Actively Exploited Apple 0-Day Vulnerabilities
Tags: apple, cisa, cyber, cybersecurity, exploit, flaw, infrastructure, macOS, ransomware, vulnerability, zero-dayThe Cybersecurity and Infrastructure Security Agency (CISA) has issued a high-priority warning regarding two critical zero-day vulnerabilities impacting a wide range of Apple devices. The flaws, which impact the latest versions of iOS, iPadOS, macOS, and other Apple products, are believed to be actively exploited in the wild, though connections to ransomware campaigns remain unconfirmed.…
-
Actively exploited Apple zero-days patched
First seen on scworld.com Jump to article: www.scworld.com/brief/actively-exploited-apple-zero-days-patched
-
Apple Patches Two Zero-Days Used in ‘Extremely Sophisticated’ Attacks
Find out the specifics of these iOS and macOS vulnerabilities, as well as which Apple devices were impacted. First seen on techrepublic.com Jump to article: www.techrepublic.com/article/news-apple-patches-zero-days-ios-macos/
-
Hackers target Apple users in an ‘extremely sophisticated attack’
Flaws patched across the board: According to the NVD description, Apple issued a fix for all impacted operating systems. Patched Apple OS rollouts include tvOS 18.4.1, visionOS 2.4.1, iOS 18.4.1, iPadOS 18.4.1, and macOS Sequoia 15.4.1.Specific iPhones and iPads that shall be receiving the patch include iPhone XS and later, iPad Pro 13-inch, iPad Pro…