Tag: apple
-
Apple Confirms ‘Extremely Sophisticated’ Exploit Threatening iOS Security
Apple fixes the USB Restricted Mode flaw in iOS 18.3.1 and iPadOS 18.3.1. Vulnerability exploited in targeted attacks…. First seen on hackread.com Jump to article: hackread.com/apple-extremely-sophisticated-exploit-ios-security/
-
DeepSeek erfasst Tastatureingabemuster
Selbst Tastatureingaben in der DeepSeek App können womöglich mitgelesen werden, bevor sie abgeschickt werden.Behörden und Cybersicherheitsfachleute haben gravierende Sicherheitsbedenken gegen die chinesische KI DeepSeek. Dabei geht es um mehrere Punkte: die offenkundig sehr weitreichende Speicherung von Nutzerdaten, die mögliche Manipulierbarkeit der Anwendung für kriminelle Zwecke und die Frage, inwieweit der chinesische Spionage- und Überwachungsapparat Zugriff…
-
Apple zero day used in ‘extremely sophisticated attack’
CVE-2025-24200 is a zero-day vulnerability that bypasses Apple’s USB Restricted Mode in iPhones and iPads and was exploited in the wild against ‘specific targeted individuals.’ First seen on techtarget.com Jump to article: www.techtarget.com/searchsecurity/news/366619044/Apple-zero-day-used-in-extremely-sophisticated-attack
-
OpenSSL patched high-severity flaw CVE-2024-12797
OpenSSL patched the vulnerability CVE-2024-12797, a high-severity flaw found by Apple that enables man-in-the-middle attacks. The OpenSSL Project addressed a high-severity vulnerability, tracked as CVE-2024-12797, in its secure communications library. The OpenSSL software library allows secure communications over computer networks against eavesdropping or need to identify the party at the other end. OpenSSL contains an open-source implementation…
-
Apple Releases Urgent Patch for USB Vulnerability
The vulnerability could allow a threat actor to disable the security feature on a locked device and gain access to user data. First seen on darkreading.com Jump to article: www.darkreading.com/endpoint-security/apple-releases-urgent-patch-usb-vulnerability
-
Apple Fixes Actively Exploited iOS, iPadOS, Zero-Day Flaw
First seen on scworld.com Jump to article: www.scworld.com/brief/apple-fixes-actively-exploited-ios-ipados-zero-day-flaw
-
Apple fixes security flaw allowing third-party access to locked devices
A flaw in iOS has been used in an “extremely sophisticated attack against specific targeted individuals,” according to a patch announcement by Apple. First seen on therecord.media Jump to article: therecord.media/apple-ios-vulnerability-citizen-lab
-
High-Severity OpenSSL Vulnerability Found by Apple Allows MitM Attacks
OpenSSL has patched CVE-2024-12797, a high-severity vulnerability found by Apple that can allow man-in-the-middle attacks. The post High-Severity OpenSSL Vulnerability Found by Apple Allows MitM Attacks appeared first on SecurityWeek. First seen on securityweek.com Jump to article: www.securityweek.com/high-severity-openssl-vulnerability-found-by-apple-allows-mitm-attacks/
-
Apple issues emergency patches to contain an ‘extremely sophisticated attack’ on targeted individuals
Security researcher uncovers the exploit: The vulnerability was discovered by Bill Marczak, a senior researcher at Citizen Lab, a digital rights research group at the University of Toronto’s Munk School.Marczak took to social media to urge users to update their devices immediately, stating: “Update your iPhones”¦ again! iOS 18.3.1 out today with a fix for…
-
British techies to advise on ‘devastating’ UK global crypto power grab
A hitherto unknown British organisation which even the government may have forgotten about is about to be drawn into a global technical and financial battle, facing threats from Apple to pull out of the UK First seen on computerweekly.com Jump to article: www.computerweekly.com/news/366619028/Apple-British-techies-to-advise-on-devastating-UK-global-crypto-power-grab
-
Apple fixes zero-day flaw exploited in >>extremely sophisticated<< attack (CVE-2025-24200)
Users of iPhones and iPads that run iOS/iPadOS 18 and iPadOS 17 are urged to implement the latest updates to plug a security feature bypass vulnerability (CVE-2025-24200) … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2025/02/11/apple-fixes-zero-day-flaw-exploited-in-extremely-sophisticated-attack-cve-2025-24200/
-
Apple Mitigates “Extremely Sophisticated” Zero-Day Exploit
Apple has patched a zero-day vulnerability being exploited in targeted attacks First seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/apple-update-extremely/
-
Sicherheit und mehr: Das steckt in den jüngsten Updates für Mac, iPhone und iPad
Apple hat weitere Informationen zu iOS 18.3.1, iPadOS 18.3.1, iPadOS 17.7.5 sowie macOS 13.7.4, 14.7.4 und 15.3.1 veröffentlicht. Leider nicht sehr ausführlich. First seen on heise.de Jump to article: www.heise.de/news/Sicherheit-und-mehr-Das-steckt-in-den-juengsten-Updates-fuer-Mac-iPhone-und-iPad-10277332.html
-
Apple veröffentlicht Notfall-Update iOS 18.3.1 (10.2.2025)
Apple hat zum 10.2.2025 ein Update auf iOS 18.3.1 freigegeben. Es ist quasi ein Notfall-Update, welches eine ausnutzbare Schwachstelle schließen soll. Zudem enthält das Update Fehlerbeseitigungen. Die Update-Installation wird allen Nutzern von iOS-Geräten empfohlen. Nachfolgender Post zeigt das anstehende Update … First seen on borncity.com Jump to article: www.borncity.com/blog/2025/02/11/apple-veroeffentlicht-notfall-update-ios-18-3-1-10-2-2025/
-
iOS, iPadOS, MacOS, WatchOS und VisionOS: Apple-Betriebssysteme erhalten Sicherheitsupdates
iOS 18.3.1 schließt eine kritische Sicherheitslücke. Mit 8.4. soll Apple Intelligence in die EU kommen. First seen on golem.de Jump to article: www.golem.de/news/ios-ipados-macos-watchos-und-visionos-apple-betriebssysteme-erhalten-sicherheitsupdates-2502-193213.html
-
Apple Patches Actively Exploited iOS Zero-Day CVE-2025-24200 in Emergency Update
Apple on Monday released out-of-band security updates to address a security flaw in iOS and iPadOS that it said has been exploited in the wild.Assigned the CVE identifier CVE-2025-24200, the vulnerability has been described as an authorization issue that could make it possible for a malicious actor to disable USB Restricted Mode on a locked…
-
Apple and Google take down malicious mobile apps from their app stores
Apple and Google have pulled as many as 20 apps from their respective apps for carrying a data-stealing malware. First seen on techcrunch.com Jump to article: techcrunch.com/2025/02/10/apple-and-google-take-down-malicious-apps-from-their-app-stores/
-
Apple warns ‘extremely sophisticated attack’ may be targeting iThings
Cupertino mostly uses bland language when talking security, so this sounds nasty First seen on theregister.com Jump to article: www.theregister.com/2025/02/11/apple_ios_ipados_patches/
-
How to detect and disable Apple AirTags that might be tracking you
Tags: appleApple’s AirTags are a convenient way to track personal items like keys and bags, but they also raise concerns about unwanted tracking and stalking. To help users stay … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2025/02/11/apple-airtags-tracking-detect-disable/
-
Apple fixes iPhone and iPad bug exploited in ‘extremely sophisticated attacks’
Apple released iOS and iPadOS updates to address a zero-day likely exploited in extremely sophisticated attacks targeting specific individuals. Apple released emergency security updates to address a zero-day vulnerability, tracked as CVE-2025-24200, that the company believes was exploited in >>extremely sophisticated
-
[Corrected] Out of 6,000 non-IPA requests, Apple provided UK with iCloud data only four times since 2020
The figures suggest a potential motivation behind the British government’s reported legal order to require Apple to be capable of providing iCloud content upon receipt of a valid warrant. First seen on therecord.media Jump to article: therecord.media/requests-apple-provided-four-times
-
Apple fixes iPhone and iPad bug used in an ‘extremely sophisticated attack’
Unknown attackers may have exploited a zero-day bug to access data on locked phones, according to Apple. First seen on techcrunch.com Jump to article: techcrunch.com/2025/02/10/apple-fixes-iphone-and-ipad-bug-used-in-an-extremely-sophisticated-attack/
-
Apple Confirms USB Restricted Mode Exploited in ‘Extremely Sophisticated’ Attack
Cupertino’s security response team said the flaw was used in “an extremely sophisticated attack against specific targeted individuals.” The post Apple Confirms USB Restricted Mode Exploited in ‘Extremely Sophisticated’ Attack appeared first on SecurityWeek. First seen on securityweek.com Jump to article: www.securityweek.com/apple-confirms-usb-restricted-mode-exploited-in-extremely-sophisticated-attack/
-
Apple fixes iPhone and iPad bug used in an >>extremely sophisticated attack<<
Unknown attackers may have exploited a zero-day bug to access data on locked phones, according to Apple. First seen on techcrunch.com Jump to article: techcrunch.com/2025/02/10/apple-fixes-iphone-and-ipad-bug-used-in-an-extremely-sophisticated-attack/
-
Privacy Roundup: Week 6 of Year 2025
Tags: access, ai, api, apple, backdoor, breach, browser, cctv, chrome, control, credit-card, cybersecurity, data, data-breach, encryption, exploit, firmware, framework, germany, government, group, leak, malware, monitoring, phishing, privacy, regulation, risk, router, scam, service, software, spy, technology, threat, tool, update, vpn, vulnerability, windowsThis is a news item roundup of privacy or privacy-related news items for 2 FEB 2025 – 8 FEB 2025. Information and summaries provided here are as-is for warranty purposes. Note: You may see some traditional “security” content mixed-in here due to the close relationship between online privacy and cybersecurity – many things may overlap;…
-
Apple fixes zero-day exploited in ‘extremely sophisticated’ attacks
Apple has released emergency security updates to patch a zero-day vulnerability that the company says was exploited in targeted and “extremely sophisticated” attacks. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/apple/apple-fixes-zero-day-exploited-in-extremely-sophisticated-attacks/
-
Out of 6,000 requests, Apple provided UK with iCloud data only four times since 2020
The figures suggest a potential motivation behind the British government’s reported legal order to require Apple to be capable of providing iCloud content upon receipt of a valid warrant. First seen on therecord.media Jump to article: therecord.media/requests-apple-provided-four-times
-
UK’s secret Apple iCloud backdoor order is a global emergency, say critics
Security experts say the ‘draconian’ order would have global ramifications that make this a privacy ’emergency for us all’ First seen on techcrunch.com Jump to article: techcrunch.com/2025/02/10/uks-secret-apple-icloud-backdoor-order-is-a-global-emergency-say-critics/
-
Experts Dismayed at UK’s Apple Decryption Demands
Security and privacy experts have questioned a new demand from the UK Home Office on Apple’s encrypted iCloud service First seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/experts-dismayed-uk-apple/