Tag: apple

French Advisory Sheds Light on Apple Spyware Activity

Sep 12, 2025 10:16 PM

Tags: advisory, apple, attack, flaw, spyware, zero-day

CERT-FR’s advisory follows last month’s disclosure of a zero-day flaw Apple said was used in sophisticated attacks against targeted individuals. First seen on darkreading.com Jump to article: www.darkreading.com/vulnerabilities-threats/french-sheds-light-apple-spyware-activity
Chinese Guarantee Syndicates and the Fruit Machine

Sep 12, 2025 8:16 PM

Tags: apple, business, china, country, credit-card, crime, data, finance, group, iphone, mobile, organized, phishing, phone, theft

When I was speaking to a group of Bank Security people in New York City yesterday, I mentioned “machine rooms” — which are rooms full of Apple iPhones that are used to send iMessage phishing spam. Someone in the audience asked “Where would they get that many phones?” The kids like to use the acronym…
Apple Warns French Users of Fourth Spyware Campaign in 2025, CERT-FR Confirms

Sep 12, 2025 6:16 PM

Tags: apple, computer, spyware

Apple has notified users in France of a spyware campaign targeting their devices, according to the Computer Emergency Response Team of France (CERT-FR).The agency said the alerts were sent out on September 3, 2025, making it the fourth time this year that Apple has notified citizens in the county that at least one of the…
Apple’s 2026 Security Program Could Change iPhone Safety

Sep 12, 2025 4:16 PM

Tags: apple, iphone

Apple opens 2026 Security Research Device applications, giving experts loaned iPhones to hunt iOS flaws. First seen on esecurityplanet.com Jump to article: www.esecurityplanet.com/applications/apples-2026-security-program-could-change-iphone-safety/
Why domain-based attacks will continue to wreak havoc

Sep 12, 2025 2:16 PM

Tags: access, ai, apple, attack, authentication, breach, business, cisa, cisco, cloud, control, crowdstrike, cyber, cybercrime, cybersecurity, data, deep-fake, defense, detection, dkim, dmarc, dns, edr, email, endpoint, exploit, firewall, infrastructure, leak, linkedin, login, malicious, malware, network, phishing, ransomware, risk, service, soc, social-engineering, tactics, threat, tool, training, unauthorized, vulnerability

Website spoofing, where pseudo-sites are designed to trick visitors into believing they are on the real site.Domain spoofing, when the URL mimics the URL of the real site.Email domain phishing, which involves messages sent from legit-looking email domains to trick people into clicking on dangerous links or open malicious attachments.DNS hijacking redirects traffic from legitimate…
France Warns Apple Users of New Spyware Campaign

Sep 12, 2025 1:16 PM

Tags: apple, cybersecurity, spyware

Apple has sent at least four notifications in 2025, according to the French national cybersecurity agency First seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/france-apple-spyware-campaign/
Apple issues spyware warnings as CERT-FR confirms attacks

Sep 12, 2025 11:16 AM

Tags: apple, attack, computer, cyber, spyware

Apple warned users of a spyware campaign; France’s cyber agency confirmed targeted iCloud-linked devices may be compromised. Apple warned customers last week about new spyware attacks, the French national Computer Emergency Response Team (CERT-FR) said. The agency confirmed at least four such alerts since early 2025. Apple sent spyware alerts on March 5, April 29,…
Spionage auf dem iPhone: Neue Spyware-Attacken treffen Apple-Nutzer

Sep 12, 2025 10:16 AM

Tags: apple, iphone, spyware

Seit 2021 hat Apple bereits Betroffene aus über 150 Ländern vor Spyware-Attacken gewarnt. Die jüngste Angriffswelle ist schon die vierte in diesem Jahr. First seen on golem.de Jump to article: www.golem.de/news/spionage-auf-dem-iphone-neue-spyware-attacken-treffen-apple-nutzer-2509-200027.html
Apple Warns of Mercenary Spyware Attacks Targeting User Devices

Sep 12, 2025 10:16 AM

Tags: apple, attack, cyber, cybercrime, spyware

Apple has issued urgent warnings about sophisticated spyware attacks targeting specific users worldwide, including journalists, activists, politicians, and diplomats. Mercenary spyware attacks differ significantly from regular cybercriminal activity. These attacks cost millions of dollars and target only a small number of individuals based on their profession or status. The attacks are often linked to state…
Apple’s latest iPhone security feature just made life more difficult for spyware makers

Sep 12, 2025 12:16 AM

Tags: apple, iphone, spyware, zero-day

Apple launched a new security feature for iPhone 17 and iPhone Air designed to reduce the effect of memory corruption bugs, and in turn make spyware and zero-days more difficult to hack into iPhones. First seen on techcrunch.com Jump to article: techcrunch.com/2025/09/11/apples-latest-iphone-security-feature-just-made-life-more-difficult-for-spyware-makers/
Apple CarPlay RCE Exploit Left Unaddressed in Most Cars

Sep 11, 2025 10:16 PM

Tags: apple, exploit, rce, remote-code-execution, vulnerability

Even when a vulnerability is serious and a fix is available, actually securing cars is more difficult than one would hope. First seen on darkreading.com Jump to article: www.darkreading.com/vulnerabilities-threats/apple-carplay-rce-exploit
Apple warns customers targeted in recent spyware attacks

Sep 11, 2025 9:16 PM

Tags: apple, attack, computer, spyware

Apple warned customers last week that their devices were targeted in a new series of spyware attacks, according to the French national Computer Emergency Response Team (CERT-FR). First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/apple-warns-customers-targeted-in-recent-spyware-attacks/
France says Apple notified victims of new spyware attacks

Sep 11, 2025 6:16 PM

Tags: apple, attack, government, spyware, threat

The French government says Apple sent out threat notifications to customers alerting them to spyware attacks earlier in September. First seen on techcrunch.com Jump to article: techcrunch.com/2025/09/11/france-says-apple-notified-victims-of-new-spyware-attacks/
Apple’s Big Bet to Eliminate the iPhone’s Most Targeted Vulnerabilities

Sep 11, 2025 4:16 PM

Tags: apple, exploit, iphone, vulnerability

Alongside new iPhones, Apple released a new security architecture on Tuesday: Memory Integrity Enforcement aims to eliminate the most frequently exploited class of iOS bugs. First seen on wired.com Jump to article: www.wired.com/story/apple-iphone-17-memory-integrity-enforcement/
Apple slips up on ChillyHell macOS malware, lets it past security . . . for 4 years

Sep 10, 2025 9:16 PM

Tags: apple, cybercrime, group, macOS, malware, threat

‘We do believe that this was likely the creation of a cybercrime group,’ threat hunter tells The Reg First seen on theregister.com Jump to article: www.theregister.com/2025/09/10/chillyhell_modular_macos_malware/
Apple CarPlay Vulnerability Allows Remote Code Execution to Gain Root Access

Sep 10, 2025 5:16 PM

Tags: access, apple, cve, cyber, flaw, remote-code-execution, risk, vulnerability

A newly disclosed vulnerability in Apple’s CarPlay ecosystem enablesremote code execution with root privileges, posing a serious risk to connected vehicles. Discovered by the Oligo Security Research team and tracked asCVE-2025-24132, the flaw resides within the AirPlay protocol implementation used by CarPlay systems. CVE ID Affected Components Versions Impacted CVE-2025-24132 AirPlay Audio SDK < 2.7.1…
CHILLYHELL macOS Backdoor and ZynorRAT RAT Threaten macOS, Windows, and Linux Systems

Sep 10, 2025 5:16 PM

Tags: access, apple, backdoor, cybersecurity, linux, macOS, malware, rat, threat, windows

Cybersecurity researchers have discovered two new malware families, including a modular Apple macOS backdoor called CHILLYHELL and a Go-based remote access trojan (RAT) named ZynorRAT that can target both Windows and Linux systems.According to an analysis from Jamf Threat Labs, ChillyHell is written in C++ and is developed for Intel architectures.CHILLYHELL is the name assigned…
CHILLYHELL macOS Backdoor and ZynorRAT RAT Threaten macOS, Windows, and Linux Systems

Sep 10, 2025 5:16 PM

Tags: access, apple, backdoor, cybersecurity, linux, macOS, malware, rat, threat, windows

Cybersecurity researchers have discovered two new malware families, including a modular Apple macOS backdoor called CHILLYHELL and a Go-based remote access trojan (RAT) named ZynorRAT that can target both Windows and Linux systems.According to an analysis from Jamf Threat Labs, ChillyHell is written in C++ and is developed for Intel architectures.CHILLYHELL is the name assigned…
Apple iPhone Air and iPhone 17 Feature A19 Chips With Spyware-Resistant Memory Safety

Sep 10, 2025 5:16 PM

Tags: apple, attack, iphone, spyware

Apple on Tuesday revealed a new security feature called Memory Integrity Enforcement (MIE) that’s built into its newly introduced iPhone models, including iPhone 17 and iPhone Air.MIE, per the tech giant, offers “always-on memory safety protection” across critical attack surfaces such as the kernel and over 70 userland processes without sacrificing device performance by designing…
Apple iPhone Air and iPhone 17 Feature A19 Chips With Spyware-Resistant Memory Safety

Sep 10, 2025 5:16 PM

Tags: apple, attack, iphone, spyware

Apple on Tuesday revealed a new security feature called Memory Integrity Enforcement (MIE) that’s built into its newly introduced iPhone models, including iPhone 17 and iPhone Air.MIE, per the tech giant, offers “always-on memory safety protection” across critical attack surfaces such as the kernel and over 70 userland processes without sacrificing device performance by designing…
CHILLYHELL macOS Backdoor and ZynorRAT RAT Threaten macOS, Windows, and Linux Systems

Sep 10, 2025 5:16 PM

Tags: access, apple, backdoor, cybersecurity, linux, macOS, malware, rat, threat, windows

Cybersecurity researchers have discovered two new malware families, including a modular Apple macOS backdoor called CHILLYHELL and a Go-based remote access trojan (RAT) named ZynorRAT that can target both Windows and Linux systems.According to an analysis from Jamf Threat Labs, ChillyHell is written in C++ and is developed for Intel architectures.CHILLYHELL is the name assigned…
Apple’s new Memory Integrity Enforcement system deals a huge blow to spyware developers

Sep 10, 2025 5:16 PM

Tags: apple, exploit, spyware

The system, a five-year effort to address memory safety “at scale,” is the result of spyware developers making zero-click exploits that targeted a device’s memory. First seen on cyberscoop.com Jump to article: cyberscoop.com/apple-memory-integrity-enforcement-iphone-ios-anti-spyware/
Apple CarPlay Vulnerability Allows Remote Code Execution to Gain Root Access

Sep 10, 2025 5:16 PM

Tags: access, apple, cve, cyber, flaw, remote-code-execution, risk, vulnerability

A newly disclosed vulnerability in Apple’s CarPlay ecosystem enablesremote code execution with root privileges, posing a serious risk to connected vehicles. Discovered by the Oligo Security Research team and tracked asCVE-2025-24132, the flaw resides within the AirPlay protocol implementation used by CarPlay systems. CVE ID Affected Components Versions Impacted CVE-2025-24132 AirPlay Audio SDK < 2.7.1…
macOS Under Attack: Atomic Stealer Hidden in Pirated Software

Sep 8, 2025 11:08 AM

Tags: apple, attack, cyber, cybercrime, cybersecurity, data, macOS, malware, software, theft, threat

The cybersecurity landscape for macOS users has taken a dangerous turn as cybercriminals increasingly target Apple’s ecosystem with sophisticated malware campaigns. Atomic macOS Stealer (AMOS), a specialized data-theft malware, has emerged as one of the most significant threats to Mac users, particularly those seeking cracked software applications. While macOS has historically maintained a reputation as…
iCloud Calendar abused to send phishing emails from Apple’s servers

Sep 7, 2025 11:08 PM

Tags: apple, email, phishing

iCloud Calendar invites are being abused to send callback phishing emails disguised as purchase notifications directly from Apple’s email servers, making them more likely to bypass spam filters to land in targets’ inboxes. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/icloud-calendar-abused-to-send-phishing-emails-from-apples-servers/
macOS Stealer Campaign Uses “Cracked” App Lures to Bypass Apple Security

Sep 5, 2025 2:20 PM

Tags: apple, macOS, malware

Trend Micro observed the attackers using terminal-based installation methods for the AMOS malware, luring macOS users into installing cracked versions of apps First seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/macos-stealer-cracked-apps-bypass/
macOS Stealer Campaign Uses “Cracked” App Lures to Bypass Apple Security

Sep 5, 2025 2:20 PM

Tags: apple, macOS, malware

Trend Micro observed the attackers using terminal-based installation methods for the AMOS malware, luring macOS users into installing cracked versions of apps First seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/macos-stealer-cracked-apps-bypass/
Apple iOS 26 set to dump 75M iPhones on the e-waste pile

Sep 4, 2025 12:19 PM

Tags: apple, iphone

XR, XS, and XS Max owners left with $268M worth of scrap First seen on theregister.com Jump to article: www.theregister.com/2025/09/02/apple_ios_26_waste/
WhatsApp Bug Anchors Targeted Zero-Click iPhone Attacks

Sep 3, 2025 6:20 PM

Tags: apple, attack, exploit, flaw, group, iphone, zero-day

A sophisticated attack that also exploits an Apple zero-day flaw is targeting a specific group of iPhone users, potentially with spyware. First seen on darkreading.com Jump to article: www.darkreading.com/cyberattacks-data-breaches/whatsapp-bug-zero-click-iphone-attacks
Major IPTV Piracy Network Uncovered Spanning 1100 Domains

Sep 3, 2025 3:20 PM

Tags: apple, network, privacy

A massive IPTV privacy network has been uncovered distributing unlicensed content from major brands including Apple TV, Disney+, HBO, Netflix and more First seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/iptv-piracy-network-span-1100/