Apple News Articles
Recent news articles refferecing the vendors vulnerabilities.
Apple Urgently Patches Zero-day Flaw Exploited in the Wild
Apple has released an emergency security update for patching two actively exploited zero-day vulnerabilities on iOS.
3 days ago
iPhone Security Alert: Apple releases emergency iOS update to fix data leak vulnerability
Apple has released an urgent iOS and iPadOS update (18.3.1) to patch a critical security vulnerability (CVE-2025-24200) that allows attackers with physical access to bypass USB Restricted Mode on locked devices. Discovered by The Citizen Lab, the flaw has been exploited in highly targeted attacks. S...
4 weeks ago
The Cyber ExpressCVE-2025-24200Apple Patches Critical IOS Zero-Day CVE-2025-24200
Apple releases emergency updates for iOS and iPadOS to fix CVE-2025-24200, a zero-day vulnerability exploited to bypass USB security on locked devices.
4 weeks ago
Apple zero day used in 'extremely sophisticated attack' | TechTarget
Apple announced on Monday it patched a zero-day flaw in iPads and iPhones that could enable an attacker to disable the USB Restricted Mode security feature.
4 weeks ago
Help Net SecurityCVE-2025-24200Apple fixes zero-day flaw exploited in "extremely sophisticated" attack (CVE-2025-24200) - Help Net Security
iPhone/iPad users: implement updates to fix a security feature bypass vulnerability (CVE-2025-24200) exploited in a sophisticated attack.
4 weeks ago
IntegoiOS 18.3 and macOS Sequoia 15.3 patch first Apple zero-day of 2025 - The Mac Security Blog
Apple released critically urgent security updates this week for macOS, iOS, iPadOS, visionOS, and tvOS to address a bug that was actively exploited in the wild.
4 weeks ago
The Hacker NewsCVE-2025-24200Apple Patches Actively Exploited iOS Zero-Day CVE-2025-24200 in Emergency Update
Apple released an emergency iOS update to fix CVE-2025-24200, a zero-day flaw exploited to bypass USB Restricted Mode on locked devices in sophisticat
4 weeks ago
GBHackers NewsCVE-2025-24200Apple iOS 0-day Vulnerability Exploited Wild in Extremely Sophisticated Attack
Apple has released emergency security updates to address a zero-day vulnerability, CVE-2025-24200, that has been actively exploited in targeted attacks against iPhone and iPad users.
4 weeks ago
ForbesCVE-2025-24118New Apple Warning For MillionsāUpdate Now To Fix Critical Flaw
A critical flaw in millions of Apple products including Macs and iPads could allow attackers to execute code. Here's what you need to know.
CybersecurityNewsCVE-2025-24118Apple's macOS Kernel Vulnerability Let Attackers Escalate Privileges - PoC Released
A critical vulnerability in Apple's macOS kernel (XNU), tracked as CVE-2025-24118, has been disclosed, potentially allowing attackers to escalate privileges, corrupt memory, and even execute kernel-level code.Ā
GBHackers NewsCVE-2025-24118Apple's macOS Vulnerability (CVE-2025-24118) Exposes Users to Privilege Escalation Attacks
A critical privilege escalation vulnerability in Apple's macOS kernel has been revealed, posing a significant risk to users.
SentinelOneCVE-2025-24085The Good, the Bad and the Ugly in Cybersecurity - Week 5
Officials seize two major hacking forums, zero-day bug found in multiple Apple products, and APTs abuse Gemini AI to bolster cyber operations.
Week in review: Apple 0-day used to target iPhones, DeepSeekās popularity exploited by scammers - Help Net Security
Hereās an overview of some of last weekās most interesting news, articles, interviews and videos: Apple zero-day vulnerability exploited to target iPhone
Security AffairsCVE-2025-24085U.S. CISA adds Apple products' flaw to its Known Exploited Vulnerabilities catalog
U.S. Cybersecurity and Infrastructure Security Agency (CISA) adds Apple products' flaw to its Known Exploited Vulnerabilities catalog.
ForbesCVE-2025-24085iOS 18.3āUpdate Now Warning Issued To All iPhone Users
Apple has issued iOS 18.3, fixing 29 flaws, one of which is already being used in real-life attacks on iPhones. Here's what you need to know.
Help Net SecurityCVE-2025-24085Apple zero-day vulnerability exploited to target iPhone users (CVE-2025-24085) - Help Net Security
Apple has shipped a fix for a zero-day vulnerability (CVE-2025-24085) that is being leveraged by attackers against iPhone users.
ForbesCVE-2025-24085iOS 18.3āUpdate Now Warning Issued To All iPhone Users
Apple has issued iOS 18.3, fixing 29 flaws, one of which is already being used in real-life attacks on iPhones. Here's what you need to know.
The RegisterCVE-2025-24085Apple plugs exploited security hole in iOS, updates macOS
Apple has plugged a security hole in the software at the heart of its iPhones, iPads, Vision Pro goggles, Apple TVs andĀ macOS Sequoia Macs, warning some miscreants have already exploited the bug. The...
DataconomyCVE-2025-240859 security flaws fixed in iOS 18.3: Should you trust Apple Intelligence now?
Apple has rolled out critical software updates for its devices, including iOS 18.3, iPadOS 18.3, macOS Sequoia 15.3, tvOS 18.3, visionOS 2.3, and watchOS
CybersecurityNewsCVE-2025-24085Apple Zero-day Vulnerability Actively Exploited to Attack iPhone Users
Apple has released critical security updates to address a zero-day vulnerability actively exploited in attacks targeting iPhone users.Ā
The Hacker NewsCVE-2025-24085Apple Patches Actively Exploited Zero-Day Affecting iPhones, Macs, and More
Apple addresses a zero-day flaw (CVE-2025-24085) and fixes 9 vulnerabilities in iOS 18.3, macOS Sequoia 15.3, and more.
Apple Patches First Exploited iOS Zero-Day of 2025
Apple has released fixes for dozens of vulnerabilities in its mobile and desktop products, including an iOS zero-day exploited in attacks.
ForbesCVE-2025-24085iOS 18.3āUpdate Now Warning Issued To All iPhone Users
Apple has issued iOS 18.3, fixing 29 flaws, one of which is already being used in real-life attacks on iPhones. Here's what you need to know.
daily.devCVE-2024-54507SUSCTL: CVE-2024-54507 | daily.dev
A significant vulnerability, CVE-2024-54507, was discovered in macOS 15.0 where the use of sysctl command could lead to a kernel crash due to an invalid load. The issue was traced to integer type confusion in the sysctl_udp_log_port handler, leading to a kernel memory leak. The bug was reported and ...
macOS flaw that allowed attackers to bypass core system protections is now fixed - macOS Discussions on AppleInsider Forums
macOS flaw that allowed attackers to bypass core system protections is now fixed
product vulnerabilities / malware / ransomware
Our focus is on the home user, and how to secure your privacy and safety online.
Apple fixes macOS flaw that allowed attackers to bypass core system protections
A macOS vulnerability exposed Apple devices to severe security risks by bypassing System Integrity Protection, but a security patch has killed the exploit.
DataconomyCVE-2024-44243Your Mac may be at risk: Fix the new SIP exploit immediately
Microsoft has disclosed a recently patched security vulnerability in Appleās macOS, identified as CVE-2024-44243, which could allow an attacker operating with
Security AffairsCVE-2024-44243CVE-2024-44243 macOS flaw allows persistent malware installation
Microsoft disclosed details of a flaw in Apple macOS that could have allowed an attacker to bypass the OS System Integrity Protection (SIP)
HackreadCVE-2024-44243Microsoft Discovers macOS Flaw CVE-2024-44243, Bypassing SIP
CVE-2024-44243, a macOS vulnerability discovered recently by Microsoft, can allow attackers to bypass Apple's System Integrity Protection (SIP).
SiliconANGLECVE-2024-44243Microsoft reveals macOS vulnerability that allowed System Integrity Protection bypass - SiliconANGLE
Microsoft reveals macOS vulnerability that allowed System Integrity Protection bypass - SiliconANGLE
The Hacker NewsCVE-2024-44243Microsoft Uncovers macOS Vulnerability CVE-2024-44243 Allowing Rootkit Installation
CVE-2024-44243 flaw in macOS SIP allowed root-level exploits, risking persistent malware and reduced system reliability.
Techzine EuropeCVE-2024-44243Microsoft researchers find critical macOS SIP vulnerability
Microsoft discovers critical macOS vulnerability: cybercriminals can bypass Apple's security measures via this SIP vulnerability.
Microsoft Discloses macOS Kernel Extension Vulnerability
Microsoft's Threat Intelligence team has uncovered a critical security vulnerability in Apple's macOS that could allow attackers to bypass System Integrity Protection (SIP) through third-party kernel...
GBHackers NewsCVE-2024-44243Critical macOS Vulnerability Lets Hackers to Bypass Appleās System Integrity Protection
Microsoft Threat Intelligence has uncovered a critical macOS vulnerability that allowed attackers to bypass Appleās System Integrity Protection (SIP).
CybersecurityNewsCVE-2024-44243New macOS Vulnerability Lets Attackers Bypass Appleās System Integrity Protection (SIP)
Microsoft has identified a significant vulnerability in macOS that could allow attackers to bypass Appleās System Integrity Protection (SIP).
Microsoft: macOS bug lets hackers install malicious kernel drivers
Apple recently addressed a macOS vulnerability that allows attackers to bypass System Integrity Protection (SIP) and install malicious kernel drivers by loading third-party kernel extensions.
Analyzing CVE-2024-44243, a macOS System Integrity Protection bypass through kernel extensions | Microsoft Security Blog
Microsoft discovered a macOS vulnerability allowing attackers to bypass System Integrity Protection (SIP) by loading third party kernel extensions, which could lead to serious consequences, such as allowing attackers to install rootkits, create persistent malware, bypass Transparency, Consent, and C...
GBHackers NewsCVE-2024-54498PoC Exploit Released for Critical macOS Sandbox Vulnerability (CVE-2024-54498)
A proof-of-concept (PoC) exploit has been publicly disclosed for a critical vulnerability impacting macOS systems, identified asĀ CVE-2024-54498.
CybersecurityNewsCVE-2024-54498Critical macOS Sandbox Vulnerability (CVE-2024-54498) PoC Exploit Released Online
A proof-of-concept exploit was released for a critical vulnerability impacting macOS systems, identified as CVE-2024-54498.
Apple patches zero day affecting operating systems for devices, Macs
Apple released a bevy of security updates to fix a slew of vulnerabilities in its products on Monday, including a zero day that āmay have been exploitedā in operating systems for its iPhones, iPads and Macintosh computers.
The Hacker NewsCVE-2024-44131Researchers Uncover Symlink Exploit Allowing TCC Bypass in iOS and macOS
Apple patches CVE-2024-44131, a TCC bypass vulnerability enabling malicious apps to access sensitive data via symlink manipulation.
ForbesCVE-2024-44131iOS 18 AlertāiPhone Users Waiting To Update At Risk From New Attack
People waiting to update to iOS 18 could be putting their security at risk, according to a new warning. Here's what you need to know.
iOS vuln leaves user data dangerously exposed | Computer Weekly
Jamf threat researchers detail an exploit chain for a recently patched iOS vulnerability that enables a threat actor to steal sensitive data, warning that many organisations are still neglecting mobile updates.
MacworldCVE-2024-44131Jamf details scary iCloud flaw that was exploitable until this fall
Bypass allowed apps to access sensitive data without notifying the user.
gergelykalman.comGergely's hack blog
Gergely's blog about hacking, privacy, and everything else
AUSCERT Week in Review for 29th November 2024 - AUSCERT
Greetings, This week, we had the exciting opportunity to reconnect with our Melbourne community at an AUSCERT member meetup. It was an inspiring space for collaboration, where participants shared experiences,...
CISA Warns of Apple & Oracle Agile Vulnerabilities Exploited in Wild
CISA has issued an urgent advisory regarding three critical vulnerabilities affecting Apple and Oracle products.