All about Security, News and Incidents on Apple products

Discussion in 'Apple and Mac OS X' started by Papusan, Sep 21, 2021.

  1. Papusan

    Papusan Jokebook's Sucks! Dont waste your $$$ on Filthy

    Reputations:
    40,614
    Messages:
    29,280
    Likes Received:
    57,574
    Trophy Points:
    931
    All about security, news and events on Apple products. Apple is with time permeated with more and more security vulnerabilities. Hence I post this new thread.

    APPLE, SECURITY
    New macOS zero-day bug lets attackers run commands remotely bleepingcomputer.com | Today

    Security researchers disclosed today a new vulnerability in Apple's macOS Finder, which makes it possible for attackers to run arbitrary commands on Macs running any macOS version up to the latest release, Big Sur.
     
  2. Papusan

    Papusan Jokebook's Sucks! Dont waste your $$$ on Filthy

    Reputations:
    40,614
    Messages:
    29,280
    Likes Received:
    57,574
    Trophy Points:
    931
  3. Papusan

    Papusan Jokebook's Sucks! Dont waste your $$$ on Filthy

    Reputations:
    40,614
    Messages:
    29,280
    Likes Received:
    57,574
    Trophy Points:
    931
    Apple fixes another zero-day used to deploy NSO iPhone spyware bleepingcomputer.com | Sept 23, 2021
    Apple has released security updates to fix three zero-day vulnerabilities exploited in the wild by attackers to hack into iPhones and Macs running older iOS and macOS versions.

    ---------------------------------------------------------------------------------

    Your Outdated iPhone May Still Get Security Updates htg.com | SEP 23, 2021

    All of these older Apple devices were unable to upgrade to iOS 13 and beyond. However, it appears as though Apple hasn’t completely given up on them, as the company releasing iOS 12.5.5 is a sign that Apple still cares about people who prefer to hold on to their older devices.

    --------------------------------------------------------------------------------

    Researcher drops three iOS zero-days that Apple refused to fix bleepingcomputer.com | Sept 24, 2021

    Proof-of-concept exploit code for three iOS zero-day vulnerabilities (and a fourth one patched in July) was published on GitHub after Apple delayed patching and failed to credit the researcher.
     
    Last edited: Sep 24, 2021
    kojack and jclausius like this.
  4. Papusan

    Papusan Jokebook's Sucks! Dont waste your $$$ on Filthy

    Reputations:
    40,614
    Messages:
    29,280
    Likes Received:
    57,574
    Trophy Points:
    931
    [​IMG]

    Apple Accused Of Ignoring Three 0-Day Vulnerabilities And Skirting Bug Bounties hothardware - Sat, Sep 25, 2021

    Like many big tech companies including Microsoft and Google, Apple has a bug bounty program that pays big bucks for newly-discovered security vulnerabilities. The fees for confirmed reports of issues range from $25,000 for "limited" unauthorized control of an iCloud account, to a cool million bucks for a zero-click remote chain with full kernel access without requiring user interaction. Of course companies build good will by following through on their promises of payment in these programs. When a researcher feels ignored, however, that can break trust in the program and leave vulnerabilities unpatched and exposed.
     
    Spartan@HIDevolution and kojack like this.
  5. Papusan

    Papusan Jokebook's Sucks! Dont waste your $$$ on Filthy

    Reputations:
    40,614
    Messages:
    29,280
    Likes Received:
    57,574
    Trophy Points:
    931
    [​IMG]
    Hackers can use AirTags to steal your Apple account — what you need to know tomsguide.com | Sept 29, 2021

    Apple's AirTags make it easy to phish people and steal their Apple accounts, a security researcher says.

    Bobby Rauch, a Boston-area cybersecurity consultant, said in a blog post today (Sept. 28) that Apple makes it too easy to sneak malicious code into the online messages that AirTag owners can leave for anyone who finds their lost tracking discs.
     
    jclausius and kojack like this.
  6. kojack

    kojack Notebook Prophet

    Reputations:
    1,227
    Messages:
    4,187
    Likes Received:
    1,630
    Trophy Points:
    231
    jclausius likes this.
  7. kojack

    kojack Notebook Prophet

    Reputations:
    1,227
    Messages:
    4,187
    Likes Received:
    1,630
    Trophy Points:
    231
    jclausius likes this.
  8. Papusan

    Papusan Jokebook's Sucks! Dont waste your $$$ on Filthy

    Reputations:
    40,614
    Messages:
    29,280
    Likes Received:
    57,574
    Trophy Points:
    931
    jclausius and kojack like this.
  9. kojack

    kojack Notebook Prophet

    Reputations:
    1,227
    Messages:
    4,187
    Likes Received:
    1,630
    Trophy Points:
    231
    Love it, They all thought it was apple coming out with all of these "new" technologies. lemmings gonna lem.
     
    Papusan and jclausius like this.
  10. Papusan

    Papusan Jokebook's Sucks! Dont waste your $$$ on Filthy

    Reputations:
    40,614
    Messages:
    29,280
    Likes Received:
    57,574
    Trophy Points:
    931
    jclausius likes this.
Loading...

Share This Page