Collecting Cyber-News from over 60 sources

Tag: iphone

Kernel saunters How Apple rearranged its XNU kernel with exclaves

Mar 8, 2025 5:54 PM

by

Andy Stern

in SecurityNews

Tags: apple, iphone

iPhone giant compartmentalizes OS for the sake of security First seen on theregister.com Jump to article: www.theregister.com/2025/03/08/kernel_sanders_apple_rearranges_xnu/
Renderbilder vom iPhone 17 Air aufgetaucht: Kopiert Apple jetzt einen Konkurrenten?

Feb 18, 2025 5:46 PM

by

Andy Stern

in SecurityNews

Tags: apple, iphone

First seen on t3n.de Jump to article: t3n.de/news/renderbilder-vom-iphone-17-air-aufgetaucht-kopiert-apple-jetzt-einen-konkurrenten-1673690/
USB-C bei iPhone und Mac absichern: MDM-Admins dürfen Sicherheit reduzieren

Feb 17, 2025 10:46 AM

by

Andy Stern

in SecurityNews

Tags: apple, iphone

Eigentlich sorgt der sogenannte USB-Restricted-Mode dafür, dass sich Apple-Geräte nur schwer über den USB-C-Port angreifen lassen. Admins können das verhindern. First seen on heise.de Jump to article: www.heise.de/news/USB-C-bei-iPhone-und-Mac-absichern-MDM-Admins-duerfen-Sicherheit-reduzieren-10279840.html
Watchdog ponders why Apple doesn’t apply its strict app tracking rules to itself

Feb 14, 2025 10:48 AM

by

Andy Stern

in SecurityNews

Tags: apple, germany, iphone, law, office

Germany’s Federal Cartel Office voices concerns iPhone maker may be breaking competition law First seen on theregister.com Jump to article: www.theregister.com/2025/02/14/apple_app_tracking_probe/
Apple zero day used in ‘extremely sophisticated attack’

Feb 12, 2025 1:55 AM

by

Andy Stern

in SecurityNews

Tags: apple, attack, cve, exploit, iphone, vulnerability, zero-day

CVE-2025-24200 is a zero-day vulnerability that bypasses Apple’s USB Restricted Mode in iPhones and iPads and was exploited in the wild against ‘specific targeted individuals.’ First seen on techtarget.com Jump to article: www.techtarget.com/searchsecurity/news/366619044/Apple-zero-day-used-in-extremely-sophisticated-attack
Apple issues emergency patches to contain an ‘extremely sophisticated attack’ on targeted individuals

Feb 11, 2025 1:55 PM

by

Andy Stern

in SecurityNews

Tags: access, advisory, android, apple, attack, crime, data, data-breach, exploit, government, group, infrastructure, Internet, iot, iphone, law, mobile, phone, privacy, risk, spyware, technology, terrorism, threat, tool, update, vulnerability, zero-day

Security researcher uncovers the exploit: The vulnerability was discovered by Bill Marczak, a senior researcher at Citizen Lab, a digital rights research group at the University of Toronto’s Munk School.Marczak took to social media to urge users to update their devices immediately, stating: “Update your iPhones”¦ again! iOS 18.3.1 out today with a fix for…
Apple fixes zero-day flaw exploited in >>extremely sophisticated<< attack (CVE-2025-24200)

Feb 11, 2025 11:55 AM

by

Andy Stern

in SecurityNews

Tags: apple, attack, exploit, flaw, iphone, update, vulnerability, zero-day

Users of iPhones and iPads that run iOS/iPadOS 18 and iPadOS 17 are urged to implement the latest updates to plug a security feature bypass vulnerability (CVE-2025-24200) … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2025/02/11/apple-fixes-zero-day-flaw-exploited-in-extremely-sophisticated-attack-cve-2025-24200/
Sicherheit und mehr: Das steckt in den jüngsten Updates für Mac, iPhone und iPad

Feb 11, 2025 11:55 AM

by

Andy Stern

in SecurityNews

Tags: apple, iphone, macOS, update

Apple hat weitere Informationen zu iOS 18.3.1, iPadOS 18.3.1, iPadOS 17.7.5 sowie macOS 13.7.4, 14.7.4 und 15.3.1 veröffentlicht. Leider nicht sehr ausführlich. First seen on heise.de Jump to article: www.heise.de/news/Sicherheit-und-mehr-Das-steckt-in-den-juengsten-Updates-fuer-Mac-iPhone-und-iPad-10277332.html
Apple iOS 0-day Vulnerability Exploited Wild in Extremely Sophisticated Attack

Feb 11, 2025 5:55 AM

by

Andy Stern

in SecurityNews

Tags: access, apple, attack, cve, cyber, exploit, iphone, unauthorized, update, vulnerability, zero-day

Apple has released emergency security updates to address a zero-day vulnerability, CVE-2025-24200, that has been actively exploited in targeted attacks against iPhone and iPad users. The vulnerability allows attackers to disable USB Restricted Mode on a locked device, potentially granting unauthorized access to sensitive data. Apple is aware of reports that this issue may have…
Apple fixes iPhone and iPad bug exploited in ‘extremely sophisticated attacks’

Feb 11, 2025 12:55 AM

by

Andy Stern

in SecurityNews

Tags: apple, attack, cve, exploit, iphone, update, vulnerability, zero-day

Apple released iOS and iPadOS updates to address a zero-day likely exploited in extremely sophisticated attacks targeting specific individuals. Apple released emergency security updates to address a zero-day vulnerability, tracked as CVE-2025-24200, that the company believes was exploited in >>extremely sophisticated
Apple fixes iPhone and iPad bug used in an ‘extremely sophisticated attack’

Feb 10, 2025 9:55 PM

by

Andy Stern

in SecurityNews

Tags: access, apple, attack, data, exploit, iphone, phone, zero-day

Unknown attackers may have exploited a zero-day bug to access data on locked phones, according to Apple. First seen on techcrunch.com Jump to article: techcrunch.com/2025/02/10/apple-fixes-iphone-and-ipad-bug-used-in-an-extremely-sophisticated-attack/
Apple fixes iPhone and iPad bug used in an >>extremely sophisticated attack<<

Feb 10, 2025 8:54 PM

by

Andy Stern

in SecurityNews

Tags: access, apple, data, exploit, iphone, phone, zero-day

Unknown attackers may have exploited a zero-day bug to access data on locked phones, according to Apple. First seen on techcrunch.com Jump to article: techcrunch.com/2025/02/10/apple-fixes-iphone-and-ipad-bug-used-in-an-extremely-sophisticated-attack/
Chinese DeepSeek AI App: FULL of Security Holes Say Researchers

Feb 10, 2025 7:55 PM

by

Andy Stern

in SecurityNews

Tags: ai, android, china, data, iphone

Xi knows if you’ve been bad or good: iPhone app sends unencrypted data to China”, and Android app appears even worse. First seen on securityboulevard.com Jump to article: securityboulevard.com/2025/02/deepseek-ai-app-security-privacy-richixbw/
First Apple-notarized porn app available to iPhone users in Europe

Feb 4, 2025 5:12 AM

by

Andy Stern

in SecurityNews

Tags: apple, iphone, marketplace

The first Apple-notarized porn app, “Hot Tub,” is now available to iPhone users in Europe through the alternative app marketplace, AltStore PAL. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/apple/first-apple-notarized-porn-app-available-to-iphone-users-in-europe/
Week in review: Apple 0-day used to target iPhones, DeepSeek’s popularity exploited by scammers

Feb 2, 2025 11:12 AM

by

Andy Stern

in SecurityNews

Tags: apple, exploit, iphone, scam, vulnerability, WeeklyReview, zero-day

Here’s an overview of some of last week’s most interesting news, articles, interviews and videos: Apple zero-day vulnerability exploited to target iPhone users … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2025/02/02/week-in-review-apple-0-day-used-to-target-iphones-deepseeks-popularity-exploited-by-scammers/
Sicherheitslücke in vielen iPhones, iPads und Macs: Angreifer können private Browser-Daten stehlen so reagiert Apple

Feb 1, 2025 1:12 PM

by

Andy Stern

in SecurityNews

Tags: apple, bug, iphone

First seen on t3n.de Jump to article: t3n.de/news/sicherheitsluecke-iphones-ipads-macs-browser-daten-stehlen-apple-reaktion-1670654/
Pixel 9a: Das soll in Googles Antwort auf das iPhone SE 4 stecken und so teuer soll es werden

Feb 1, 2025 1:12 PM

by

Andy Stern

in SecurityNews

Tags: google, iphone

First seen on t3n.de Jump to article: t3n.de/news/google-pixel-9a-akku-display-preis-geruechte-1663223/
Windows 11’s Start menu is getting iPhone and Android integration

Jan 29, 2025 6:36 PM

by

Andy Stern

in SecurityNews

Tags: android, iphone, update, windows

Windows 11’s Start menu is getting a big update with full-fledged Android and iPhone integration. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/microsoft/windows-11s-start-menu-is-getting-iphone-and-android-integration/
Datenklau möglich: Neue CPU-Lücken gefährden iPhones, iPads und Macs

Jan 29, 2025 11:36 AM

by

Andy Stern

in SecurityNews

Tags: apple, iphone, mail

Zwei neue Angriffstechniken zielen auf Apple-Chips ab. Angreifer können aus der Ferne E-Mails, Zahlungsdaten und andere sensible Informationen abgreifen. First seen on golem.de Jump to article: www.golem.de/news/datenklau-moeglich-neue-cpu-luecken-gefaehrden-iphones-ipads-und-macs-2501-192834.html
SLAP, Apple, and FLOP: Safari, Chrome at risk of data theft on iPhone, Mac, iPad Silicon

Jan 29, 2025 5:37 AM

by

Andy Stern

in SecurityNews

Tags: apple, browser, chrome, data, email, iphone, risk, theft

It’s another cousin of Spectre, here to read your email, browsing history, and more First seen on theregister.com Jump to article: www.theregister.com/2025/01/29/flop_and_slap_attacks_apple_silicon/
Apple fixes zero-day flaw affecting all devices

Jan 28, 2025 5:36 PM

by

Andy Stern

in SecurityNews

Tags: apple, flaw, iphone, zero-day

The zero-day bug was fixed in iPhones, iPads, Macs, Apple TVs, Apple Watches and Vision Pro headsets. First seen on techcrunch.com Jump to article: techcrunch.com/2025/01/28/apple-fixes-zero-day-flaw-affecting-all-devices/
iPhone users targeted in Apple’s first zero-day exploit in 2025

Jan 28, 2025 1:36 PM

by

Andy Stern

in SecurityNews

Tags: apple, cve, cybersecurity, data, exploit, flaw, google, group, iphone, malicious, rce, remote-code-execution, service, software, spy, theft, threat, update, vulnerability, zero-day

Apple iPhone users were targeted for privilege escalation in the zero-day exploitation of a use-after-free vulnerability affecting Apple’s Core Media framework.”A malicious application may be able to elevate privileges,” Apple said in the security update description. “Apple is aware of a report that this issue may have been actively exploited against versions of iOS before…
Apple zero-day vulnerability exploited to target iPhone users (CVE-2025-24085)

Jan 28, 2025 12:36 PM

by

Andy Stern

in SecurityNews

Tags: apple, cve, exploit, iphone, vulnerability, zero-day

Apple has shipped a fix for a zero-day vulnerability (CVE-2025-24085) that is being leveraged by attackers against iPhone users. About CVE-2025-24085 CVE-2025-24085 is a use … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2025/01/28/apple-zero-day-vulnerability-exploited-to-target-iphone-cve-2025-24085/
iOS 18.3 Release: Apple gibt Update für iPhones & Co frei

Jan 28, 2025 8:03 AM

by

Andy Stern

in SecurityNews

Tags: apple, iphone, update

Die jüngsten Updates für iPhones, iPads und Macs bringen überschaubare Neuerungen. Eine grundlegende Änderung gibt es bei Apple Intelligence. First seen on heise.de Jump to article: www.heise.de/news/iOS-18-3-Release-Apple-gibt-Update-fuer-iPhones-Co-frei-10258289.html
Apple Patches Actively Exploited Zero-Day Affecting iPhones, Macs, and More

Jan 28, 2025 6:03 AM

by

Andy Stern

in SecurityNews

Tags: apple, cve, exploit, flaw, iphone, malicious, software, update, vulnerability, zero-day

Apple has released software updates to address several security flaws across its portfolio, including a zero-day vulnerability that it said has been exploited in the wild.The vulnerability, tracked as CVE-2025-24085, has been described as a use-after-free bug in the Core Media component that could permit a malicious application already installed on a device to elevate…
How to switch off Apple Intelligence on your iPhone, iPad, and Mac

Jan 28, 2025 1:03 AM

by

Andy Stern

in SecurityNews

Tags: apple, guide, intelligence, iphone, switch

Here’s a step-by-step guide on how to turn off and disable Apple Intelligence from your devices. First seen on techcrunch.com Jump to article: techcrunch.com/2025/01/27/how-to-switch-off-apple-intelligence-on-your-iphone-ipad-and-mac/
How to switch off Apple Intelligence on your iPhone, iPad and Mac

Jan 28, 2025 12:03 AM

by

Andy Stern

in SecurityNews

Tags: apple, guide, intelligence, iphone, switch

Here’s a step-by-step guide on how to turn off and disable Apple Intelligence from your devices. First seen on techcrunch.com Jump to article: techcrunch.com/2025/01/27/how-to-switch-off-apple-intelligence-on-your-iphone-ipad-and-mac/
Apple fixed the first actively exploited zero-day of 2025

Jan 28, 2025 12:03 AM

by

Andy Stern

in SecurityNews

Tags: apple, attack, exploit, iphone, malicious, update, vulnerability, zero-day

Apple addressed the first zero-day vulnerability of 2025, which is actively exploited in attacks in the wild aimed at iPhone users. Apple released security updates to address 2025’s first zero-day vulnerability, tracked as CVE-2025-24085, actively exploited in attacks targeting iPhone users. The vulnerability is a privilege escalation vulnerability that impacts the Core Media framework. >>A malicious…
Apple fixes this year’s first actively exploited zero-day bug

Jan 27, 2025 9:03 PM

by

Andy Stern

in SecurityNews

Tags: apple, attack, exploit, iphone, update, vulnerability, zero-day

Apple has released security updates to fix this year’s first zero-day vulnerability, tagged as actively exploited in attacks targeting iPhone users. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/apple-fixes-this-years-first-actively-exploited-zero-day-bug/
Apples USBController aus dem iPhone entschlüsselt

Jan 27, 2025 12:03 PM

by

Andy Stern

in CISO

Tags: apple, iphone

Apple rüstet seine gesamte iPhone-Linie auf USB-C um. Der dafür notwendige Mikrocontroller wurde nun dekodiert. First seen on heise.de Jump to article: www.heise.de/news/Apples-USB-C-Controller-aus-dem-iPhone-entschluesselt-10253736.html