03 Jan 2022

2022 will be the biggest year for the metaverse so far

2022 is poised to be the biggest year yet for “the metaverse,” as Facebook parent Meta, Apple, Microsoft and Google gear up to release new hardware products and software services in what so far has been a niche market for early adopters. The “metaverse” describes software and hardware that allow users

Read More
23 Nov 2021

Apple sues NSO Group over Pegasus spyware

On Tuesday, Apple filed a lawsuit against Israeli spyware company NSO Group and its parent company. Apple is seeking a permanent injunction that bans NSO Group from using all Apple software, services, and devices. The complaint also offers new information regarding how the NSO Group was able to use its

Read More
13 Oct 2021

Scammers abusing Apple developer program, stealing millions from victims on Tinder, Bumble, Grindr, Facebook Dating

Sophos has released a new report detailing a dating app scam in which attackers have stolen millions of dollars from people using platforms such as Tinder, Bumble, Grindr, Facebook Dating, and similar apps. Scammers gain the trust of targets on the dating apps, eventually convincing them to download fake crypto

Read More
30 Sep 2021

Apple AirTag Zero-Day Weaponizes Trackers

An unpatched stored cross-site scripting (XSS) bug in Apple’s AirTag “Lost Mode” could expose users to several different web-based attacks such as credential harvesting, malware delivery, token theft, and click-jacking. The personal tracker devices are suffering from a zero-day that could allow attackers to fully weaponize the device, according to

Read More
27 Sep 2021

Apple Patches 3 More Zero-Days Under Active Attack

Apple has patched three zero-day security vulnerabilities in recently released updates to iOS and macOS that are being actively exploited. One of the flaws could allow an attacker to execute arbitrary code with kernel privileges and affects macOS and older versions of iPhones. The two security releases went live on

Read More
23 Sep 2021

Unpatched Apple Zero-Day in macOS Finder Allows Code Execution

Researchers have found an unpatched zero-day in macOS Finder that could allow for remote execution. All a user needs to do is click on an email attachment and the code is executed secretly without the victim knowing. The vulnerability affects Big Sur and prior versions of macOS. MacOS Finder is

Read More
14 Sep 2021

Apple Releases Urgent Patch Following Discovery of Pegasus Spyware

This week, Apple released an urgent update that mitigates a critical vulnerability exploited by the Pegasus mobile software. The flaw, which is tracked as CVE-2021-30860, was first discovered by security researchers at the University of Toronto’s Citizen Lab when analyzing the iPhone of a Saudi activist who had been targeted

Read More
06 Aug 2021

Researchers Find Significant Vulnerabilities in macOS Privacy Protections

Researchers have uncovered significant vulnerabilities in macOS privacy protection. According to researchers Csaba Fitzl and Wojciech Regula with Offensive Security and SecuRing respectively, applications that are allowed to run on Apple’s operating system can exceed the permissions granted to them by the user. This allows for potential privacy attacks, such

Read More
27 Jul 2021

Time to update your iPhone as Apple fixes ‘actively exploited’ zero day flaw

Apple released a fix for a previously undisclosed flaw that appears to have been actively exploited. The patch pertains to iPad iOS 14.7.1 and iOS 14.7.1. The company also released macOS Big Sur 11.5.1 to address the same issue, however, this one lies in a common Apple kernel extension called

Read More
20 May 2021

Apple Exec Calls Level of Mac Malware ‘Unacceptable’

Apple is using the threat of attacks as a defense mechanism in a case brought against the firm by Epic Games after a dispute involving the latter’s hit game, Fortnite. Apple made the decision to remove Fortnite from the Apple Store, claiming that it was circumventing developer fees required by

Read More