Security

Exploitable WebKit flaw still present in iOS and macOS despite available fix

Apple has not yet patched a WebKit vulnerability present in iOS and macOS despite a fix for the flaw being available for weeks.

Mike Peterson | 2 years ago

Researcher uses minor M1 vulnerability to poke fun at 'overhyped' flaws

A minor security vulnerability "baked into" Apple Silicon is giving a security researcher an avenue to poke fun at overly dramatic reveals and poor coverage of chip errata.

Mike Peterson | 2 years ago

Apple's macOS 11.4 patches flaw that enabled surreptitious screenshots

Apple in macOS Big Sur 11.4 patched a zero-day vulnerability that could allow attackers to secretly take screenshots or record video of a user's screen by hijacking existing app permissions.

Mike Peterson | 2 years ago

Craig Federighi blasts Mac security to prop up iOS App Store

Craig Federighi, Apple's head of software engineering, said that the Mac is not currently meeting the bar for customer security set by iOS and that the platform has an unacceptable level of malware.

Mike Peterson | 2 years ago

BlackBerry publishes method to virtualize ARM64 version of macOS

BlackBerry's cybersecurity team has shared a new report that details how to emulate an ARM macOS kernel on Intel chips for Apple Silicon security research.

Mike Peterson | 2 years ago

Apple Platform Security Guide updated with Unlock with Apple Watch, Magic Keyboard details

Apple has updated its Platform Security Guide, providing more information about how the Unlock with Apple Watch feature in iOS 14.5 and Touch ID on the iMac Magic Keyboard works.

Mike Peterson | 2 years ago

Eufy owners privacy breached for an hour, app showed wrong cameras

In a major security and privacy lapse, for an hour on Monday morning, users of Eufy cameras discovered that cameras owned by other users were viewable in their app instead of their own, and settings could be changed by those granted bogus access as well.

Malcolm Owen | 2 years ago

Epic versus Apple: What's at stake if Apple loses

If Apple loses its trial with Epic Games, it could be eventually forced into making radical changes to the App Store and how consumers spend money within its ecosystem. Here are the likeliest scenarios, and what Apple would have to do to satisfy a ruling.

Malcolm Owen | 2 years ago

Apple evaluating expanding Secure Enclave protections for multiple users

Apple is researching ways to allow multiple users to benefit from Touch ID, or similar biometric systems, while keeping the protection of the current secure enclave.

William Gallagher | 2 years ago

Latest comparisons

M3 15-inch MacBook Air vs M3 14-inch MacBook Pro — Ultimate buyer's guide

M3 MacBook Air vs M1 MacBook Air — Compared

M3 MacBook Air vs M2 MacBook Air — Compared

Latest Videos

All of the specs of the iPhone SE 4 may have just been leaked

When to expect every Mac to get the AI-based M4 processor

The best game controllers for iPhone, iPad, Mac, and Apple TV

Researchers successfully use AirTag network to send messages

Security researchers investigating the Find My network used by Apple's AirTags, have been able to piggyback on the system to send data that Apple can neither monitor nor, apparently, prevent.

William Gallagher | 2 years ago

Over 200,000 people affected by Amazon review scam data leak

A database used to operate an Amazon fake reviews scam has leaked in a data breach, with the data trove revealing personal data for at least 200,000 people.

Malcolm Owen | 2 years ago

AirTag hacked and reprogrammed by security researcher

Apple's AirTag can be hacked and its software modified, a security researcher has discovered, with an exploration of the microcontroller revealing elements can be reprogrammed to change what specific functions do.

Malcolm Owen | 2 years ago

128M iOS users were affected by 2015 XcodeGhost malware

A total of 128 million iOS users downloaded apps that were affected by the XcodeGhost malware in 2015, according to emails revealed during the Epic Games v. Apple trial.

Mike Peterson | 2 years ago

Apple fixes flaws exploited in the wild with release of macOS Big Sur 11.3.1, iOS 14.5.1

Alongside iOS 14.5.1, Apple has issued a minor point update to macOS Big Sur 11.3, with both releases containing security fixes for two vulnerabilities that the company says may have been exploited in the wild.

Mike Peterson | 2 years ago

Spectre comes back from the dead to haunt Intel chips

Security researchers have found new versions of chip flaws affecting Intel and AMD processors that get around existing mitigations for Spectre attacks, resurrecting vulnerabilities that may affect Intel-based Macs.

Malcolm Owen | 2 years ago

Cellebrite removes iPhone data extraction from most capable product

Because of a crippling vulnerability, Cellebrite disabled the iPhone data extraction feature on its Physical Analyzer tool.

Wesley Hilliard | 2 years ago

macOS 11.3 patches bug that allowed attacks to bypass Mac security

Apple in macOS Big Sur 11.3 fixed a bug that could have allowed attackers to bypass the Mac's security mechanisms with a malicious document.

Mike Peterson | 2 years ago

'Severe' AirDrop exploit could expose email and phone number in highly specific circumstances

Researchers have demonstrated a theoretical risk of AirDrop sharing an iPhone user's phone number and email address with strangers.

Will Shanklin | 2 years ago

Signal hacks Cellebrite device, reveals vulnerabilities and potential Apple copyright concerns

The CEO of secure messaging app Signal has hacked a phone unlocking device made by Cellebrite, revealing critical vulnerabilities that could be used against police investigators.

Mike Peterson | 2 years ago

Stolen Quanta documents show MacBook Pro with SD card slot, MagSafe

Schematics stolen from Apple supplier Quanta Computer by ransomware gang REvil seemingly confirm that MagSafe, an SD card slot, and HDMI will be coming to a future MacBook Pro.

Mike Peterson | 2 years ago

Security

Exploitable WebKit flaw still present in iOS and macOS despite available fix

Researcher uses minor M1 vulnerability to poke fun at 'overhyped' flaws

Apple's macOS 11.4 patches flaw that enabled surreptitious screenshots

Craig Federighi blasts Mac security to prop up iOS App Store

BlackBerry publishes method to virtualize ARM64 version of macOS

Apple Platform Security Guide updated with Unlock with Apple Watch, Magic Keyboard details

Eufy owners privacy breached for an hour, app showed wrong cameras

Epic versus Apple: What's at stake if Apple loses

Apple evaluating expanding Secure Enclave protections for multiple users

Latest comparisons

M3 15-inch MacBook Air vs M3 14-inch MacBook Pro — Ultimate buyer's guide

M3 MacBook Air vs M1 MacBook Air — Compared

M3 MacBook Air vs M2 MacBook Air — Compared

Latest Videos

All of the specs of the iPhone SE 4 may have just been leaked

When to expect every Mac to get the AI-based M4 processor

The best game controllers for iPhone, iPad, Mac, and Apple TV

Researchers successfully use AirTag network to send messages

Over 200,000 people affected by Amazon review scam data leak

AirTag hacked and reprogrammed by security researcher

128M iOS users were affected by 2015 XcodeGhost malware

Apple fixes flaws exploited in the wild with release of macOS Big Sur 11.3.1, iOS 14.5.1

Spectre comes back from the dead to haunt Intel chips

Cellebrite removes iPhone data extraction from most capable product

macOS 11.3 patches bug that allowed attacks to bypass Mac security

'Severe' AirDrop exploit could expose email and phone number in highly specific circumstances

Signal hacks Cellebrite device, reveals vulnerabilities and potential Apple copyright concerns

Stolen Quanta documents show MacBook Pro with SD card slot, MagSafe

Latest tips

How to make Apple Music more private by turning off 'Discoverable by Nearby Contacts'

How to add a Quick Link for locations in Apple Maps in macOS

How to make the most of your Mac's trackpad

Latest Reviews

Ugreen DXP8800 Plus network attached storage review: Good hardware, beta software

Espresso 17 Pro review: Magnetic & modular portable Mac monitor

Journey Loc8 MagSafe Finder Wallet review: an all-in-one Find My wallet

{{ title }}