iOS 14 Update Fixes Memory Corruption Zero Day
Apple fixed CVE-2021-30883, a iOS zero day weeks ago in iOS 15. Now a patch has arrived for those still running iOS 14.
Apple fixed CVE-2021-30883, a iOS zero day weeks ago in iOS 15. Now a patch has arrived for those still running iOS 14.
The vulnerability, which has been exploited in the wild, can be triggered without the victim clicking anything.
Apple said this week that it will fix two vulnerabilities affecting iOS 6 through 13.4.1 that could let an attacker leak, modify, and delete user email.
At Black Hat, the head of Apple’s Security Engineering team announced new enhancements to its bug bounty program, including one vulnerability that could fetch a researcher $1M.
The latest in a line of ways to bypass Apple's security safeguards was disclosed at the Objective by the Sea conference over the weekend.
The bug, which quickly went viral Monday night, affected Apple's group FaceTime feature and allowed iOS users to eavesdrop on other iOS users.
Apple's new T2 security chip has several features designed to thwart attackers including a feature that makes it difficult to eavesdrop on a laptop's microphone.
Apple has reportedly begun removing apps from the App Store that share location data with third parties but fail to obtain a user's consent.
Coldroot, a new strain of macOS malware that's eluded detection for more than a year has a keylogger and can gain persistence with root privileges.
Apple says it plans to fully resolve a vulnerability in HomeKit, its internet of things framework, that could have allowed an attacker to commandeer IoT accessories like smart locks and garage door openers, later this week.