Search cyberveille.decio.ch

Found 4 bookmarks

Custom sorting

Apple Rolls Out Security Updates for iOS, macOS

Apple on Monday announced a hefty round of security updates that address dozens of vulnerabilities impacting both newer and older iOS and macOS devices. iOS 17.6 and iPadOS 17.6 were released for the latest generation iPhone and iPad devices with fixes for 35 security defects that could lead to authentication and policy bypasses, unexpected application termination or system shutdown, information disclosure, denial-of-service (DoS), and memory leaks.

#securityweek #EN #2024 #macos #ios #ipados #Security #Updates #for #iOS #iOS17.6

·securityweek.com·Aug 3, 2024

Apple Rolls Out Security Updates for iOS, macOS

Vulnerabilities in CocoaPods Open the Door to Supply Chain Attacks Against Thousands of iOS and MacOS Applications

E.V.A Information Security researchers uncovered several vulnerabilities in the CocoaPods dependency manager that allows any malicious actor to claim ownership over thousands of unclaimed pods and insert malicious code into many of the most popular iOS and MacOS applications. These vulnerabilities have since been patched. Such an attack on the mobile app ecosystem could infect almost every Apple device, leaving thousands of organizations vulnerable to catastrophic financial and reputational damage. One of the vulnerabilities could also enable zero day attacks against the most advanced and secure organizations’ infrastructure. Developers and DevOps teams that have used CocoaPods in recent years should verify the integrity of open source dependencies used in their application code. * Dependency managers are an often-overlooked aspect of software supply chain security. Security leaders should explore ways to increase governance and oversight over the use these tools.

#evasec #EN #2024 #CocoaPods #Supply #Chain #Attacks #macOS #iOS #CVE-2024-38368

·evasec.io·Jul 2, 2024

Vulnerabilities in CocoaPods Open the Door to Supply Chain Attacks Against Thousands of iOS and MacOS Applications

Safari Flaw Can Expose iPhone Users in the EU to Tracking

Apple's implementation of installing marketplace apps from Safari is heavily flawed and can allow a malicious marketplace to track users across websites

#mysk #EN #2024 #ios #macos #safari #Flaw #iPhone #EU #Tracking

·mysk.blog·May 9, 2024

Safari Flaw Can Expose iPhone Users in the EU to Tracking

Jamf says 9% of smartphone have fallen for phishing attacks

In a report going over the state of malware in 2024, device management firm Jamf says that 9% of mobile users were caught by phishing, while 20% of companies were at risk because of bad smartphone configurations.

#appleinsider #EN #2024 #smartphone #phishing #macos #ios #report #Statistics

·appleinsider.com·Feb 22, 2024

Jamf says 9% of smartphone have fallen for phishing attacks