Apple patched an iOS lock screen bypass without crediting its discovery
Apple fixed a recently unearthed lock screen bypass with the release of iOS 15.0.1, but failed to publicly recognize the weakness or the person who discovered it.
Apple fixed a recently unearthed lock screen bypass with the release of iOS 15.0.1, but failed to publicly recognize the weakness or the person who discovered it.
Apple has joined the Cyber Readiness Institute as a co-chair of the organization, which is focused on helping small- and medium-sized businesses become more secure.
A team of researchers in the U.K. has discovered security issues related to Visa cards and Apple Pay that could result in attackers bypassing the lock screen and making fraudulent payments.
Apple investor Christian Brothers Investment Services is pressing the company to do more to combat the spread of child sexual abuse material (CSAM), with a specific eye on videos.
A recently discovered AirTag weakness allows would-be attackers to redirect users to a malicious webpage when the device is scanned in Lost Mode, effectively turning the tracker into a Trojan horse.
Apple has responded to a security researcher who claimed that the company ignored several of his vulnerability reports, stating that it is "still investigating" the issues.
A flaw discovered in Apple's new iCloud Private Relay defeats the feature's raison d'etre by exposing a user's IP address when certain conditions are met.
A security researcher claims that Apple snubbed them on a zero-day flaw they reported, and that the company has yet to fix three other zero-day vulnerabilities that are now present in iOS 15.
Apple on Thursday pushed out updates for older versions of its iOS and macOS operating systems, patching three zero-day vulnerabilities including a bug that was likely exploited in the wild by NSO Group's Pegasus spyware.
Apple this week continued work to deprecate Transport Layer Security 1.0 and 1.1 from its various operating systems, replacing the long-in-the-tooth security protocols with more modern versions.
Following leaks about his all-hands Apple meeting about pay equity, Tim Cook has told staff that the company does not "tolerate disclosures of confidential information."
A newly discovered bug in all versions of macOS, including the latest macOS Big Sur, allows attackers to run arbitrary code remotely with the help of files embedded in emails.
Apple on Monday quietly announced that iOS 15 includes a number of security improvements including enhancements to Face ID's anti-spoofing models.
A new iOS vulnerability discovered by researcher Jose Rodriguez enables would-be attackers to bypass a secured iPhone lock screen and access notes by leveraging a combination of VoiceOver and common sharing tools.
In 2016, an iPhone exploit was purchased and deployed by the United Arab Emirates in a surveillance campaign targeting dissidents, activists, foreign leaders and other persons of interest. A new report claims an American company developed and sold the hack.
Apple's update to iOS 14.8 and iPadOS 14.8 introduce fixes to two vulnerabilities, including one that enabled attacks that worked around Apple's Blastdoor protective system.
A security researcher has explained how his investigation into Apple's CloudKit platform inadvertently brought down Siri Shortcuts earlier in 2021.
The cloud directory service JumpCloud has raised $159 million and a $2.56 billion valuation in a new funding round, assisted in part by an expansion of its Mac device management services.
Priti Patel, Home Secretary of the UK, penned an op-ed this week highlighting a need for enhanced child protection online, and in doing so lauded Apple's now-postponed CSAM monitoring plans.
Apple's bug bounty program is frustrating the security research community, with complaints spanning poor communication, confusion about payments, and more.
{{ summary }}