Tag: apple
-
Apple iPad mini 7 – Mit A17 Pro werden Apple Intelligence und Apple Pencil Pro unterstützt
by
in SecurityNewsFirst seen on computerbase.de Jump to article: www.computerbase.de/news/tablets/apple-ipad-mini-7-mit-a17-pro-werden-apple-intelligence-und-apple-pencil-pro-unterstuetzt.89976
-
Getting apples, bananas or cherries from hash functions !
by
in SecurityNews
Tags: appleFirst seen on research.kudelskisecurity.com Jump to article: research.kudelskisecurity.com/2023/08/26/getting-apples-bananas-or-cherries-from-hash-functions/
-
Vulnerabilities in E-Commerce Solutions – Hunting on Big Apples
by
in SecurityNewsFirst seen on resecurity.com Jump to article: www.resecurity.com/blog/article/vulnerabilities-in-e-commerce-solutions-hunting-on-big-apples
-
Apple M-1, M-2 Chips Vulnerable to GoFetch Attack, Encryption Keys Exposed
by
in SecurityNewsResearchers unearthed a significant vulnerability lurking within Apple’s M-1 and M-2 chips, potentially exposing a chink in the armor of the tech gian… First seen on sensorstechforum.com Jump to article: sensorstechforum.com/gofetch-attack-apple-m1-m2-chips/
-
LockBit-Ransomware bereitet Angriffe auf Apple vor
by
in SecurityNewsÜber Ransomware mussten sich die Nutzer von Apple-Geräten bislang weit weniger Gedanken machen als Windows-Nutzer. Mit einer neuen Variante von LockBi… First seen on 8com.de Jump to article: www.8com.de/cyber-security-blog/lockbit-ransomware-bereitet-angriffe-auf-apple-vor
-
DEF CON 32 From Getting JTAG On The iPhone 15 To Hacking Apple’s USB-C Controller
by
in SecurityNewsAuthors/Presenters: Stacksmashing Our sincere appreciation to DEF CON, and the Presenters/Authors for publishing their erudite DEF CON 32 content. Originating from the conference’s events located at the Las Vegas Convention Center; and via the organizations YouTube channel. Permalink First seen on securityboulevard.com Jump to article: securityboulevard.com/2024/11/def-con-32-from-getting-jtag-on-the-iphone-15-to-hacking-apples-usb-c-controller/
-
U.S. CISA adds Apple, Oracle Agile PLM bugs to its Known Exploited Vulnerabilities catalog
by
in SecurityNews
Tags: apple, cisa, cve, cybersecurity, exploit, infrastructure, kev, oracle, update, vulnerability, zero-dayU.S. Cybersecurity and Infrastructure Security Agency (CISA) adds Apple, Oracle Agile PLM bugs to its Known Exploited Vulnerabilities catalog. The U.S. Cybersecurity and Infrastructure Security Agency (CISA) added the following vulnerabilities to its Known Exploited Vulnerabilities (KEV) catalog: This week, Apple released security updates for two zero-day vulnerabilities, tracked as CVE-2024-44309 and CVE-2024-44308, in iOS, iPadOS,…
-
Apple Patches Two Zero-Day Attack Vectors
by
in SecurityNewsThreat actors exploited two vulnerabilities in Intel-based machines. Google’s Threat Analysis Group discovered the flaws. First seen on techrepublic.com Jump to article: www.techrepublic.com/article/apple-patches-zero-day-vulnerabilities/
-
How businesses can prepare for the 47-day certificate lifecycle: What it means and recent updates
by
in SecurityNewsApple’s proposal to shorten SSL/TLS certificate lifespans to 47 days by 2028 emphasizes enhanced security and automation. Shorter cycles reduce vulnerabilities, encourage automated certificate management, and push businesses to adopt efficient tools like ACME protocols. While the proposal isn’t yet mandatory, businesses must prepare by modernizing infrastructure, automating renewal processes, and training teams. Adapting early…
-
Just how private is Apple’s Private Cloud Compute? You can test it to find out
by
in SecurityNewsFirst seen on theregister.com Jump to article: www.theregister.com/2024/10/25/apple_private_cloud_compute/
-
macOS WorkflowKit Race Vulnerability Allows Malicious Apps to Intercept Shortcuts
by
in SecurityNewsA race condition vulnerability in Apple’s WorkflowKit has been identified, allowing malicious applications to intercept and manipulate shortcuts on macOS systems. This vulnerability, cataloged as CVE-2024-27821, affects the shortcut extraction and generation processes within the WorkflowKit framework, which is integral to the Shortcuts app on macOS Sonoma. macOS WorkflowKit Race Vulnerability The vulnerability arises from…
-
Criminals ‘Ghost Tap’ NFC for Payment Cash-Out Attacks
by
in SecurityNewsTactic Uses Stolen Cards Added to Apple Pay and Google Pay Digital Wallets. Criminals have been caught tapping a new type of relay attack to cash-out stolen payment cards added to legitimate digital wallets. These criminals use money mules who carry an Android device able to capture and relay NFC communications used by ATMs to…
-
Apple Urgently Patches Actively Exploited Zero-Days
by
in SecurityNewsThough the information regarding the exploits is limited, the company did report that Intel-based Mac systems have been targeted by cybercriminals looking to exploit CVE-2024-44308 and CVE-2024-44309. First seen on darkreading.com Jump to article: www.darkreading.com/cyberattacks-data-breaches/apple-patches-actively-exploited-zero-days
-
New Ghost Tap attack abuses NFC mobile payments to steal money
by
in SecurityNewsCybercriminals have devised a novel method to cash out from stolen credit card details linked to mobile payment systems such as Apple Pay and Google Pay, dubbed ‘Ghost Tap,’ which relays NFC card data to money mules worldwide. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/new-ghost-tap-attack-abuses-nfc-mobile-payments-to-steal-money/
-
Apple Confirms Zero Day Attacks Hitting macOS Systems
by
in SecurityNewsFirst seen on packetstormsecurity.com Jump to article: packetstormsecurity.com/news/view/36616/Apple-Confirms-Zero-Day-Attacks-Hitting-macOS-Systems.html
-
Apple Security Update: Addressing Critical Vulnerabilities in Apple Software
by
in SecurityNewsApple recently rolled out a security update that addresses critical vulnerabilities in multiple Apple devices. Released on November 19, the Apple security update impacts various platforms, including iOS, iPadOS, macOS, visionOS, and Safari, and is aimed at protecting users from increasingly sophisticated cyber threats. First seen on thecyberexpress.com Jump to article: thecyberexpress.com/apple-security-update-nov-2024/
-
Ghost Tap: Hackers Exploiting NFCGate to Steal Funds via Mobile Payments
by
in SecurityNewsThreat actors are increasingly banking on a new technique that leverages near-field communication (NFC) to cash out victim’s funds at scale.The technique, codenamed Ghost Tap by ThreatFabric, enables cybercriminals to cash-out money from stolen credit cards linked to mobile payment services such as Google Pay or Apple Pay and relaying NFC traffic.”Criminals can now misuse…
-
Apple Issues Emergency Security Update for Actively Exploited Vulnerabilities
by
in SecurityNewsApple has urged customers to download the security updates, which address vulnerabilities relating to the JavaScriptCore and WebKit frameworks First seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/apple-security-update/
-
MacOS-Nutzer attackiert: Apple patcht aktiv ausgenutzte Sicherheitslücken
by
in SecurityNewsApple hat bestätigt, dass Angriffe auf Intel-basierte Macs beobachtet wurden. iOS, iPadOS, VisionOS und Safari scheinen aber ebenso anfällig zu sein. First seen on golem.de Jump to article: www.golem.de/news/macos-nutzer-attackiert-apple-patcht-aktiv-ausgenutzte-sicherheitsluecken-2411-190959.html
-
Apple fixes 2 zero-days exploited to breach macOS systems (CVE-2024-44309, CVE-2024-44308)
by
in SecurityNewsApple has released emergency security updates for macOS Sequoia that fix two zero-day vulnerabilities (CVE-2024-44309, CVE-2024-44308) that >>may have been actively … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2024/11/20/cve-2024-44309-cve-2024-44308/
-
Apple addressed two actively exploited zero-day vulnerabilities
by
in SecurityNewsApple released security updates for iOS, iPadOS, macOS, visionOS, and Safari browser to address two actively exploited zero-day flaws. Apple released security updates for two zero-day vulnerabilities, tracked as CVE-2024-44309 and CVE-2024-44308, in iOS, iPadOS, macOS, visionOS, and Safari web browser, which are actively exploited in the wild. The vulnerability CVE-2024-44309 is a cookie management issue…
-
WebKit-Exploit: Apple aktualisiert iOS, iPadOS, visionOS, macOS 15 und Safari
by
in SecurityNewsApple schiebt iOS 18.1.1, macOS 15.1.1 und visionOS 2.1.1 nach, um aktiv ausgenutzte Exploits zu stoppen. Nutzer sollten am besten schnell aktualisieren. First seen on heise.de Jump to article: www.heise.de/news/WebKit-Exploit-Apple-aktualisiert-iOS-iPadOS-visionOS-macOS-15-und-Safari-10072858.html
-
Apple Notfall-Sicherheitsupdate: Intel-basierte Mac-Systeme in Gefahr
by
in SecurityNewsApple schließt kritische Sicherheitslücken in macOS mit Notfall-Sicherheitsupdates. Jetzt handeln und vor Zero-Day-Angriffen schützen! First seen on tarnkappe.info Jump to article: tarnkappe.info/artikel/it-sicherheit/apple-notfall-sicherheitsupdate-intel-basierte-mac-systeme-in-gefahr-304500.html
-
Apple Releases Urgent Updates to Patch Actively Exploited Zero-Day Vulnerabilities
by
in SecurityNewsApple has released security updates for iOS, iPadOS, macOS, visionOS, and its Safari web browser to address two zero-day flaws that have come under active exploitation in the wild.The flaws are listed below -CVE-2024-44308 – A vulnerability in JavaScriptCore that could lead to arbitrary code execution when processing malicious web contentCVE-2024-44309 – A cookie management…
-
Apple says Mac users targeted in zero-day cyberattacks
by
in SecurityNewsApple said the security update for Macs, iPhones, and iPads is “recommended for all users.” First seen on techcrunch.com Jump to article: techcrunch.com/2024/11/19/apple-says-mac-users-targeted-in-zero-day-cyberattacks/
-
Apple fixes two zero-days used in attacks on Intel-based Macs
by
in SecurityNewsApple released emergency security updates to fix two zero-day vulnerabilities that were exploited in attacks on Intel-based Mac systems. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/apple-fixes-two-zero-days-used-in-attacks-on-intel-based-macs/
-
Apple Confirms Zero-Day Attacks Hitting macOS Systems
by
in SecurityNewsApple rushes out out major macOS and iOS security updates to cover a pair of vulnerabilities already being exploited in the wild. The post Apple Confirms Zero-Day Attacks Hitting macOS Systems appeared first on SecurityWeek. First seen on securityweek.com Jump to article: www.securityweek.com/apple-confirms-zero-day-attacks-hitting-intel-based-macs/
-
Apple Confirms Zero-Day Attacks Hitting Intel-based Macs
by
in SecurityNewsApple rushes out out major macOS and iOS security updates to cover a pair of vulnerabilities already being exploited in the wild. The post Apple Confirms Zero-Day Attacks Hitting Intel-based Macs appeared first on SecurityWeek. First seen on securityweek.com Jump to article: www.securityweek.com/apple-confirms-zero-day-attacks-hitting-intel-based-macs/
-
Apple still blocking access to news apps and podcasts at Moscow’s request
by
in SecurityNewsFirst seen on therecord.media Jump to article: therecord.media/apple-blocking-access-news-apps-kremlin