Apple News Articles
Recent news articles refferecing the vendors vulnerabilities.
Apple warns 2 macOS zero-day vulnerabilities under attack | TechTarget
Apple published a security update with limited details on zero-day vulnerabilities CVE-2024-44308 and CVE-2024-44309 in macOS Sequoia.
1 day ago
Help Net Security CVE-2024-44309CVE-2024-44308Apple fixes 2 zero-days exploited to breach macOS systems (CVE-2024-44309, CVE-2024-44308) - Help Net Security
Apple has released security updates for macOS Sequoia that fix two exploited zero-day vulnerabilities (CVE-2024-44309, CVE-2024-44308).
1 day ago
CVE-2024-44133HM Surf macOS vuln potentially exploited by Adloader malware
In revealing details about a vulnerability that threatens the privacy of Apple fans, Microsoft urges all macOS users to update their systems. The bug, tracked as CVE-2024-44133 (CVSS 5.5) and patched in...
1 month ago
The Register CVE-2024-44133HM Surf macOS vuln potentially exploited by Adloader malware
In revealing details about a vulnerability that threatens the privacy of Apple fans, Microsoft urges all macOS users to update their systems. The bug, tracked as CVE-2024-44133 (CVSS 5.5) and patched in...
1 month ago
Adload malware exploits flaw to bypass macOS protections for Safari
Microsoft warns users to patch the HM Surf flaw because Defender detected it was actively exploited.
1 month ago
Hackread CVE-2024-44133"HM Surf" macOS Flaw Lets Attackers Access Camera and Mic – Patch Now!
Microsoft discovered a new macOS vulnerability, "HM Surf" (CVE-2024-44133), which bypasses TCC protections and allowing unauthorized access.
1 month ago
Adload malware exploits flaw to bypass macOS protections for Safari
Microsoft warns users to patch the HM Surf flaw because Defender detected it was actively exploited.
1 month ago
MacOS Safari Exploit Exposes Camera, Mic, Browser Data
Microsoft researchers toyed with app permissions to uncover CVE-2024-44133, using it to access sensitive user data. Adware merchants may have as well.
1 month ago
Nicolas Coolman CVE-2024-44204CVE-2024-44207Apple, 2 Critical Security Flaws in iOS and iPadOS Products - ZAM
Apple Security Bulletin 121373, released on October 3, 2024, provides information on fixes for multiple critical vulnerabilities in versions prior to
2 months ago
iPhone 'VoiceOver' Feature Could Read Passwords Aloud
CVE-2024-44204 is one of two new Apple iOS security vulnerabilities that showcase an unexpected coming together of privacy snafus and accessibility features.
2 months ago
SystemTek CVE-2024-40841Apple macOS AppleVADriver Out-Of-Bounds Write Remote Code Execution Vulnerability [CVE-2024-40841]
CVE number = CVE-2024-40841 This vulnerability allows remote attackers to execute arbitrary code on affected installations of Apple macOS, it has a CVSS score of 8.8 User interaction is required to exploit...
2 months ago
www.thehackerwire.com CVE-2024-27822CVE-2024-27822
We believe that knowledge is the ultimate weapon against cyber threats. By breaking down complex concepts, democratizing technical expertise, and fostering a dialogue around cybersecurity, TheHackerWire...
4 months ago
Forbes CVE-2024-27867Apple Issues New AirPods Security Update For Eavesdropping Flaw
Apple has issued an update for AirPods to fix a flaw that could allow an attacker to eavesdrop on your conversations. Here's what you need to know.
5 months ago
CybersecurityNews CVE-2024-27867Apple AirPods Bluetooth Vulnerability Lets Attackers Gain Access to Device
Apple has recently released critical firmware updates for its AirPods and Beats headphones to address a significant Bluetooth vulnerability.
5 months ago
Magasin MACKEN CVE-2024-27867Apple åtgärdar allvarligt säkerhetsbugg i Bluetooth - som kan exploateras för att avlyssna dig
Buggen har fått namnet CVE-2024-27867, och det är ett autentiseringsproblem, som finns i mjukvara för AirPods (andra generationen och senare), AirPods Pro (alla…
5 months ago
The Cyber Post CVE-2024-27815TURPENTINE XNU Kernel Buffer Overflow - The Cyber Post
Daily cybersecurity news articles on the latest breaches, hackers, exploits and cyber threats. Learn and educate yourself with malware analysis, cybercrime
5 months ago
GBHackers on Security CVE-2024-27801Critical Flaw In Apple Ecosystems Let Attackers Gain Unauthorized Access
Hackers go for Apple due to its massive user base along with rich customers, including business people and managers who use those devices
5 months ago
CybersecurityNews CVE-2024-27822PoC Exploit Released for macOS Root Access Vulnerability
A security vulnerability, identified as CVE-2024-27822, has been discovered in macOS. This vulnerability allows unauthorized root access and has raised serious concerns among cybersecurity experts and macOS users alike.
6 months ago
iOS零日攻击:专家揭示对三角定位行动的更深入见解
The TriangleDB implant used to target Apple iOS devices packs in at least four different modules to record microphone, extract iCloud Keychain, steal data from SQLite databases used by various apps, and estimate the vict
6 months ago
Libero Tecnologia CVE-2024-27842Aggiornate subito i MacBook: c'è un bug pericolosissimo
Una nuova vulnerabilità colpisce i Mac e i MacBook con sistema operativo non aggiornato: un hacker può prendere il controllo completo del computer.
6 months ago
Red Hot Cyber CVE-2024-27842Apple macOS non è sicuro. Aggiornare immediatamente per evitare potenziali attacchi
Una grave falla di sicurezza informatica è stata rilevata all'interno del sistema operativo di Apple Mac OS.
6 months ago
SecurityLab.ru CVE-2024-27842CVE-2024-27842: macOS 14 больше не является безопасной
Ваше ядро впадёт в панику от одной лишь мысли об эксплойте к новой уязвимости.
6 months ago
GBHackers on Security CVE-2024-27842PoC Exploit Released For macOS Privilege Escalation Vulnerability
A new vulnerability has been discovered in macOS Sonoma that is associated with privilege escalation. This vulnerability has been assigned
6 months ago
iOSNerds CVE-2024-27818CVE-2024-27834iOS 17.5 Security Patches – Everything You Need To Know
Apple has recently released iOS 17.5 Security Patches update that addresses 15 vulnerabilities in the iPhone operating system.........
6 months ago
iDownloadBlog CVE-2024-27804Apple walks back CVE-2024-27804, claims it's non-exploitable & offers security researcher paltry $1,000 bounty
Apple says CVE-2024-27804 isn't exploitable, so not only won't jailbreakers benefit from it, but the security researcher won't get a reward.
6 months ago
iDownloadBlog CVE-2024-27804PoC for CVE-2024-27804 published, jailbreak developers uncertain of viability
A proof of concept for CVE-2024-27804 was published, but some jailbreak developers are voicing that it won't result in a jailbreak.
6 months ago
Help Net Security CVE-2024-23296Apple backports iOS zero-day patch, adds Bluetooth tracker alert - Help Net Security
Apple has added a new capability to iOS 17 that will alert users if an unknown Bluetooth tracker is "seen" moving with them.
6 months ago
prophaze.com CVE-2024-27842CVE-2024-27842 : APPLE MACOS UP TO 14.4 KERNEL LOCAL PRIVILEGE ESCALATION - Cloud WAF
CVE-2024-27842 : The issue was addressed with improved checks. This issue is fixed in macOS Sonoma 14.5. An app may be able to execute arbitrary code with kernel privileges.
6 months ago
iDownloadBlog CVE-2024-27804Security researcher says PoC for kernel vulnerability targeting iOS 17.4.1 and older coming soon
A security researcher is promising a write up about a kernel vulnerability proof-of-concept affecting iOS 17.4.1 and older.
6 months ago
Apple backports fix for RTKit iOS zero-day to older iPhones
Apple has backported security patches released in March to older iPhones and iPads, fixing an iOS Kernel zero-day tagged as exploited in attacks.
6 months ago
Apple backports fix for zero-day exploited in attacks to older iPhones
Apple has backported security patches released in March to older iPhones and iPads, fixing an iOS zero-day tagged as exploited in attacks.
6 months ago
CVE-2023-42931 Detection: Critical macOS Vulnerability Enabling Easy Privilege Escalation and Root Access - SOC Prime
Detect CVE-2023-42931 exploitation attempts for critical macOS privilege escalation vulnerability with a Sigma rule in the SOC Prime Platform.
8 months ago
securityonline.info CVE-2023-42931CVE-2023-42931: macOS Flaw Exposed Systems to Easy Privilege Escalation – Patch Now!
Security researcher Yann Gascuel has detailed a critical privilege escalation vulnerability (CVE-2023-42931) affecting the macOS versions
8 months ago
Apple releases urgent security update for Mac: CVE-2024-23300
News Summary: Apple rarely issues updates for a single security issue, let alone for one that only impacts a single app. So, what do Mac users need to know about CVE-2024-23300? - Forbes (United States)
8 months ago
Forbes: «Apple Suddenly Issues Urgent Security Update For Mac: CVE-2024-23300»
«Apple rarely issues updates for a single security issue, let alone for one that only impacts a single app. So, what do Mac users need to know about CVE-2024-23300?»
8 months ago
Forbes CVE-2024-23300Apple Suddenly Issues Urgent Security Update For Mac: CVE-2024-23300
Apple rarely issues updates for a single security issue, let alone for one that only impacts a single app. So, what do Mac users need to know about CVE-2024-23300?
8 months ago
Latest Hacking News CVE-2024-23225Apple Addressed Two iOS Zero-Days With Latest Updates
With iOS 17.4 and iOS 16.7.6, Apple addressed numerous vulnerabilities, including two zero-days. Users must update their devices asap.
8 months ago
Apple discloses 2 iOS zero-day vulnerabilities | TechTarget
Apple disclosed two zero-day vulnerabilities on March 5, CVE-2024-23225 and CVE-2024-23296, which the company said 'may have been exploited' in the wild.
9 months ago
The Register CVE-2024-23225Apple remains tight-lipped about latest iPhone, iPad 0-days
Apple's latest security patches address four vulnerabilities affecting iOS and iPadOS, including two zero-days that intel suggests attackers have already exploited. In typical Apple fashion, it's keeping most...
9 months ago
Help Net Security CVE-2024-23225CVE-2024-23296Apple fixes two actively exploited iOS zero-days (CVE-2024-23225, CVE-2024-23296) - Help Net Security
Apple has fixed two iOS zero-day vulnerabilities (CVE-2024-23225, CVE-2024-23296) exploited by attackers in the wild.
9 months ago
securityonline.info CVE-2024-23225CVE-2024-23296CVE-2024-23225 & CVE-2024-23296: Apple Patches Actively Exploited 0-Day Flaws
Apple recently pushed out emergency patches to fix two "zero-day" vulnerabilities (CVE-2024-23225 and CVE-2024-23296) that are already under attack
9 months ago
Forbes CVE-2024-23204iOS 17.3—iPhone Update Fixes Major Shortcuts Issue
If you haven't updated to iOS 17.3 yet, now's the time to do it, following a new iPhone security warning. Here's what you need to know.
9 months ago
CVE-2024-23204 Detection: Exploitation of a Recently Patched Vulnerability in Apple Shortcuts App Can Lead to User Data Theft - SOC Prime
Detect CVE-2024-23204 exploitation attempts, a newly patched zero-click Apple Shortcuts vulnerability, with a curated Sigma rule from SOC Prime.
9 months ago
CyberSecurityNews CVE-2024-23204Researchers Unveild Apple’s Shortcuts Vulnerability
Researchers have uncovered a vulnerability within Apple's Shortcuts application, shedding light on potential privacy breaches.
9 months ago
Apple Shortcuts Vulnerability Exposes Sensitive Information
High-severity vulnerability in Apple Shortcuts could lead to sensitive information leak without user’s knowledge.
9 months ago
Zero-Click Apple Shortcuts Vulnerability Allows Silent Data Theft
Vulnerability CVE-2024-23204, affecting Apple's popular Shortcuts app, suggests a critical need for ongoing security awareness in the macOS and iOS ecosystem.
9 months ago
Apple fixes three vulnerabilities found by spyware researchers | Computer Weekly
Apple has patched three more vulnerabilities uncovered by spyware and surveillance researchers at The Citizen Lab
9 months ago
Duo Security CVE-2023-42916CVE-2023-42917Apple Fixes Two Actively Exploited WebKit Bugs
The bugs (CVE-2023-42916 and CVE-2023-42917) enable sensitive information disclosure and arbitrary code execution.
9 months ago
Duo Security CVE-2023-41992CVE-2023-41991Apple Fixes Trio of Actively Exploited Bugs
The three zero days (CVE-2023-41991, CVE-2023-41992 and CVE-2023-41993) impact various versions of macOS, iOS, iPadOS and watchOS.
9 months ago