Tag: apple
-
App Store Security: Apple stops $2B in fraud in 2024 alone, $9B over 5 years
Apple blocked over $9B in fraud in 5 years, including $2B in 2024, stopping scams from deceptive apps to fake payment schemes on the App Store. In the past five years alone, Apple says it has blocked over $9 billion in fraudulent transactions, more than $2 billion of that in 2024, highlighting its ongoing efforts…
-
Apple blocked over $9 billion in App Store fraud in five years
Apple says it blocked over $9 billion in fraudulent App Store transactions over the last five years, with over $2 billion in potentially fraudulent sanctions prevented in 2024 alone. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/apple/apple-blocked-over-9-billion-in-apap-store-fraud-since-2020/
-
Apple Stops 1.9M Risky Apps, Terminates 146K Fraud Accounts in 2024
Apple, in its latest App Store fraud analysis, revealed that the company prevented more than $2 billion in potentially fraudulent transactions in 2024 alone. This contributes to a staggering total of $9 billion in fraudulent activities thwarted since 2019. First seen on thecyberexpress.com Jump to article: thecyberexpress.com/apple-app-store-fraud-prevention/
-
Apple Blocks $9 Billion in Fraud Over 5 Years Amid Rising App Store Threats
Apple on Tuesday revealed that it prevented over $9 billion in fraudulent transactions in the last five years, including more than $2 billion in 2024 alone.The company said the App Store is confronted by a wide range of threats that seek to defraud users in various ways, ranging from “deceptive apps designed to steal personal…
-
Apple says it blocked $2 billion in App Store fraud last year
The threats ranged from deceptive apps designed to steal personal information to fraudulent payment schemes. First seen on therecord.media Jump to article: therecord.media/apple-billions-app-store-fraud
-
Big Apple OS Makeover: Here’s What to Expect When
Apple’s next OS update dubbed “Solarium” may bring major design changes, according to reports. First seen on techrepublic.com Jump to article: www.techrepublic.com/article/apple-operating-system-revamp/
-
Researchers Uncover macOS ‘AppleProcessHub’ Stealer: TTPs and C2 Server Details Revealed
Researchers have identified a novel information-stealing malware dubbed ‘AppleProcessHub,’ designed to infiltrate Apple systems and exfiltrate sensitive user data. This discovery sheds light on an evolving threat landscape where macOS, often considered a secure platform, is increasingly becoming a target for sophisticated adversaries. The malware employs advanced tactics, techniques, and procedures (TTPs) to evade detection…
-
184 Million Records Database Leak: Microsoft, Apple, Google, Facebook, PayPal Logins Found
The database’s exposure duration is unknown. Signs of infostealer malware were found, but no confirmed breach or misuse of user data, says cybersecurity researcher. First seen on techrepublic.com Jump to article: www.techrepublic.com/article/news-database-leak-184-million-credentials/
-
Apple CEO reportedly urged Texas’ governor to ditch online child safety bill
Apple CEO Tim Cook reportedly called Texas Gov. Greg Abbott to make changes to or veto a newly passed law in the state that would require the company to verify the ages of device owners, according to The Wall Street Journal. Abbott has yet to sign the bill. But Apple, alongside Google, has been working…
-
Zahlreiche Dienste betroffen: Datenbank mit 184 Millionen Zugangsdaten entdeckt
Das Datenleck umfasst Passwörter für Nutzerkonten bei Microsoft, Google, Facebook, Amazon, Apple, Nintendo, Paypal und vielen weiteren. First seen on golem.de Jump to article: www.golem.de/news/zahlreiche-dienste-betroffen-datenbank-mit-184-millionen-zugangsdaten-entdeckt-2505-196511.html
-
Apple XNU Kernel Flaw Enables Attackers to Escalate Privileges
Apple has released urgent security patches addressing CVE-2025-31219, a high-severity vulnerability in its XNU kernel that underpins macOS, iOS, iPadOS, tvOS, watchOS, and visionOS. The flaw, which carries a CVSS score of 8.8 (vector: AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H), enables local attackers to escalate privileges and potentially execute arbitrary code with kernel-level access. The vulnerability was discovered by Michael…
-
Mysterious Database of 184 Million Records Exposes Vast Array of Login Credentials
The trove has now been taken down but included users’ logins for platforms including Apple, Google, and Meta, plus services from multiple governments. First seen on wired.com Jump to article: www.wired.com/story/mysterious-database-logins-governments-social-media/
-
Top 12 US cities for cybersecurity job and salary growth
Tags: access, ai, apple, attack, blockchain, business, country, crowdstrike, cyber, cybersecurity, data, defense, finance, fintech, government, group, infrastructure, insurance, iot, jobs, metric, microsoft, nvidia, office, okta, privacy, software, startup, strategy, supply-chain, technology, training, warfareWhile major hubs like San Francisco naturally come to mind, and perform well based on the metrics we evaluated, there are many lesser-known cities that may be just as promising, if not more. These emerging destinations can offer easier access to job opportunities, more sustainable career paths, higher pay, and a lower cost of living.Here’s…
-
Apple to Pay $95 Million in Siri Snooping Lawsuit Here’s How to Apply
Tags: appleDid Siri record you? Apple is paying $95 million over Siri snooping allegations. Find out if you’re eligible… First seen on hackread.com Jump to article: hackread.com/apple-95-million-siri-snooping-lawsuit-how-to-apply/
-
Multiple Apple software defects addressed
First seen on scworld.com Jump to article: www.scworld.com/brief/multiple-apple-software-defects-addressed
-
Wide-ranging Apple security update addresses over 30 vulnerabilities
Apple said there is no indication of active exploitation for the listed vulnerabilities. First seen on cyberscoop.com Jump to article: cyberscoop.com/apple-security-update-c1-modem-privacy-fixes-may-2025/
-
Apple Device Users Can File Claims in $95 Million Siri Spying Settlement
Apple earlier this year agreed to a $95 settlement to end a lawsuit filed in 2021 that claimed the company’s AI-powered assistant Siri recorded users’ conversations even when it wasn’t prompted to do so. Now anyone who feels their privacy was violated by Siri have until July 2 to file a claim for a piece…
-
PoC Exploit Published for macOS Sandbox Escape Vulnerability (CVE-2025-31258)
Security researchers have disclosed a new macOS sandbox escape vulnerability tracked as CVE-2025-31258, accompanied by a proof-of-concept (PoC) exploit demonstrating partial sandbox bypass via Apple’s RemoteViewServices framework. The flaw, discovered by researcher wh1te4ever, exposes weaknesses in macOS’s inter-process communication (IPC) mechanisms that could enable attackers to execute arbitrary code outside application sandbox constraints. With the…
-
Hackers Abuse PyInstaller to Deploy Stealthy macOS Infostealer
Jamf Threat Labs has identified a novel macOS infostealer that exploits PyInstaller, a legitimate open-source tool used to bundle Python scripts into standalone Mach-O executables. This marks the first documented instance of PyInstaller being weaponized to deploy infostealers on macOS, highlighting a sophisticated evolution in the tactics of cybercriminals targeting Apple’s ecosystem. Discovered in April…
-
Contempt order worsens Apple’s antitrust woes
A federal judge found Apple to be in contempt of an injunction ordering the company to make access to alternative payment options in the company’s App Store easier. First seen on techtarget.com Jump to article: www.techtarget.com/searchcio/news/366623650/Contempt-order-worsens-Apples-antitrust-woes
-
Google Researchers Use Mach IPC to Uncover Sandbox Escape Vulnerabilities
Google Project Zero researchers have uncovered new sandbox escape vulnerabilities in macOS using an innovative approach that leverages Mach Interprocess Communication (IPC) mechanisms-core components of Apple’s operating system. Their public research details how low-level message passing between privileged and sandboxed processes can be a dangerous attack vector, and offers open-source tools and code for the…
-
Malicious npm Packages Infect 3,200+ Cursor Users With Backdoor, Steal Credentials
Tags: ai, api, apple, backdoor, credentials, cybersecurity, infrastructure, intelligence, macOS, malicious, threat, toolCybersecurity researchers have flagged three malicious npm packages that are designed to target the Apple macOS version of Cursor, a popular artificial intelligence (AI)-powered source code editor.”Disguised as developer tools offering ‘the cheapest Cursor API,’ these packages steal user credentials, fetch an encrypted payload from threat actor-controlled infrastructure, overwrite Cursor’s First seen on thehackernews.com Jump…
-
Researchers Uncover Remote Code Execution Flaw in macOS CVE-2024-44236
Security researchers Nikolai Skliarenko and Yazhi Wang of Trend Micro’s Research Team have disclosed critical details about CVE-2024-44236, a memory corruption vulnerability in Apple’s macOS Scriptable Image Processing System (sips). Discovered by Hossein Lotfi through Trend Micro’s Zero Day Initiative, this flaw allows arbitrary code execution via maliciously crafted ICC profile files. Patched in October…
-
New Attack Exploits X/Twitter Ad URL Feature to Deceive Users
Silent Push Threat Analysts have recently exposed a sophisticated financial scam leveraging a vulnerability in X/Twitter’s advertising display URL feature to deceive users. This attack manipulates the platform’s URL display mechanism to present a legitimate-looking link, such as “From CNN[.]com,” while redirecting unsuspecting victims to a malicious cryptocurrency scam site impersonating Apple’s brand. This campaign,…
-
Guess Which Browser Tops the List for Data Collection!
Google Chrome has emerged as the undisputed champion of data collection among 10 popular web browsers studied on the Apple App Store. Collecting a staggering 20 different data types, Chrome surpasses all competitors by a significant margin. From personal contact information and precise financial details-such as payment methods and card numbers-to location data, browsing history,…
-
‘AirBorne”-Sicherheitslücken: Milliarden Apple-Geräte in Gefahr
Sicherheitsforscher von Oligo Security haben 23 Sicherheitslücken in Apple AirPlay entdeckt, die Milliarden von Apple-Geräten der Gefahr von Datendiebstahl und unberechtigtem Zugriff aussetzen. First seen on 8com.de Jump to article: www.8com.de/cyber-security-blog/airborne–sicherheitslucken-milliarden-apple-gerate-in-gefahr
-
Softwareupdate – Apple schließt Zero-Day-Schwachstellen mit Patch für iOS 18
First seen on security-insider.de Jump to article: www.security-insider.de/apple-ios-update-zero-day-schwachstellen-carplay-probleme-a-39b0e75ade847564bacdfc2804a8d88b/