Search cyberveille.decio.ch

Found 37 bookmarks

Custom sorting

Microsoft: macOS bug lets hackers install malicious kernel drivers

Apple recently addressed a macOS vulnerability that allows attackers to bypass System Integrity Protection (SIP) and install malicious kernel drivers by loading third-party kernel extensions. #Apple #Computer #InfoSec #Integrity #Microsoft #Protection #SIP #Security #System #Vulnerability #macOS

#bleepingcomputer #EN #2024 #CVE-2024-44243 #System #macOS #Apple #Security #Integrity #SIP

·bleepingcomputer.com·Jan 13, 2025

Microsoft: macOS bug lets hackers install malicious kernel drivers

Apple sends spyware victims to this nonprofit security lab

Cybersecurity experts, who work with human rights defenders and journalists, agree that Apple is doing the right thing by sending notifications to victims of mercenary spyware — and at the same time refusing to forensically analyze the devices.

#techcrunch #EN #2024 #Apple #accessnow #spyware #victims

·techcrunch.com·Dec 27, 2024

Apple sends spyware victims to this nonprofit security lab

The Wiretap: Kamala Harris’ Campaign Staff Suspected iPhones Had Been Hacked. Apple Declined To Give Them The Help They Wanted.

Apple rejects requests for a copy of a Harris campaign staffer's iPhone.

#forbes #EN #2024 #Apple #Kamala-Harris #iPhone #hack #iVerify #spyware #Declined

·forbes.com·Dec 18, 2024

The Wiretap: Kamala Harris’ Campaign Staff Suspected iPhones Had Been Hacked. Apple Declined To Give Them The Help They Wanted.

On These Apps, the Dark Promise of Mothers Sexually Abusing Children

Smartphone apps downloaded from Apple and Google can allow parents and other abusers to connect with pedophiles who pay to watch — and direct — criminal behavior.

#nytimes #EN #2024 #investigation #BigoLive #abuse #stream #child #Apps #Apple #Google #pedophiles #criminal

·nytimes.com·Dec 9, 2024

On These Apps, the Dark Promise of Mothers Sexually Abusing Children

What a new threat report says about Mac malware in 2024

Apple's macOS has been under siege in 2024 as malware-as-a-service platforms and AI-driven threats make the year a turning point for Mac security.

#appleinsider #EN #2024 #Apple #macOS #AI-driven #Mac #security #malware-as-a-service

·appleinsider.com·Dec 9, 2024

What a new threat report says about Mac malware in 2024

Leaked Documents Show What Phones Secretive Tech ‘Graykey’ Can Unlock

The documents provide never-been-seen insight into the current cat-and-mouse game between forensics companies and phone manufacturers Apple and Google.

#404media #EN #2024 #Graykey #leak #analysis #Apple #Google #ios #Android #forensics

·404media.co·Nov 19, 2024

Leaked Documents Show What Phones Secretive Tech ‘Graykey’ Can Unlock

Update your iPhone, Mac, Watch: Apple issues patches for several vulnerabilities | Malwarebytes

Apple has issued patches for several of its operating systems. The ones for iOS and iPadOS deserve your immediate attention.

#malwarebytes #EN #2024 #Apple #macOS #iOS #patch #iPadOS #CVE-2024-44274 #CVE-2024-44282 #CVE-2024-40867

·malwarebytes.com·Oct 31, 2024

Update your iPhone, Mac, Watch: Apple issues patches for several vulnerabilities | Malwarebytes

Apple Shares Private Cloud Compute Virtual Research Environment, Provides Bounties for Vulnerabilities - MacRumors

Private Cloud Compute is a cloud intelligence system that Apple designed for private artificial intelligence processing, and it's what Apple is...

#macrumors #EN #2024 #Apple #Cloud #Compute #private #artificial #intelligence #Bounty #processing

·macrumors.com·Oct 25, 2024

Apple Shares Private Cloud Compute Virtual Research Environment, Provides Bounties for Vulnerabilities - MacRumors

ShadyShader: Crashing Apple Devices with a Single Click

ShadyShader: Crashing Apple M-Series Devices with a Single Click

#imperva #EN #2024 #ShadyShader #Apple #M-Series #Click #crash

·imperva.com·Oct 23, 2024

ShadyShader: Crashing Apple Devices with a Single Click

Apple fixes password-blurting VoiceOver bug

Not a great look when the iGiant just launched its first password manager

#theregister #EN #2024 #Apple #password-blurting #VoiceOver

·theregister.com·Oct 4, 2024

Apple fixes password-blurting VoiceOver bug

Apple is well on its way to making iPhones theft-proof

Apple’s latest theft-prevention measure went live for beta testers yesterday: Activation Lock for iPhone components. The move is likely to...

#9to5mac #EN #2024 #Apple #iPhone #Activation-Lock #parts #components #theft-proof

·9to5mac.com·Sep 16, 2024

Apple is well on its way to making iPhones theft-proof

Apple Suddenly Drops NSO Group Spyware Lawsuit

Apple said there’s “too significant a risk” of exposing the anti-exploit work needed to fend off the very adversaries involved in the case.

#securityweek #EN #2024 #Apple #NSO #Group #Spyware #Lawsuit

·securityweek.com·Sep 14, 2024

Apple Suddenly Drops NSO Group Spyware Lawsuit

Docker-OSX image used for security research hit by Apple DMCA takedown

The popular Docker-OSX project has been removed from Docker Hub after Apple filed a DMCA (Digital Millennium Copyright Act) takedown request, alleging that it violated its copyright.

#bleepingcomputer #EN #2024 #Apple #DMCA #Docker-Hub #Legal #macOS

·bleepingcomputer.com·Sep 2, 2024

Docker-OSX image used for security research hit by Apple DMCA takedown

HZ Rat backdoor for macOS harvests data from WeChat and DingTalk

Kaspersky experts discovered a macOS version of the HZ Rat backdoor, which collects user data from WeChat and DingTalk messengers.

#securelist #EN #2024 #HZRat #Apple #MacOS #Backdoor #Instant-Messengers #Malware #Malware-Descriptions #shell #Trojan

·securelist.com·Aug 28, 2024

HZ Rat backdoor for macOS harvests data from WeChat and DingTalk

Russia forces Apple to remove VPN apps from the App Store

Apple has caved to pressure from Russian authorities and removed a number of the best iPhone VPN apps from the App Store in the country.

#appleinsider #EN #2024 #Russia #VPN #Apple #pressure #removed #AppStore

·appleinsider.com·Jul 7, 2024

Russia forces Apple to remove VPN apps from the App Store

Threat Actor Claims AMD and Apple Breaches

Notorious threat actor IntelBroker is claiming to have © data from Apple and AMD

#infosecurity-magazine #EN #2024 #IntelBroker #Apple #AMD #stolen #Data-Breach

·infosecurity-magazine.com·Jun 21, 2024

Threat Actor Claims AMD and Apple Breaches

Apple Patches Vision Pro Vulnerability Used in Possibly ‘First Ever Spatial Computing Hack’

Apple on Monday updated visionOS, the operating system powering its Vision Pro virtual reality headset, to version 1.2, which addresses several vulnerabilities, including what may be the first security flaw that is specific to this product. visionOS 1.2 patches nearly two dozen vulnerabilities. However, a vast majority of them are in components that visionOS shares with other Apple products, such as iOS, macOS and tvOS.

#securityweek #EN #2024 #CVE-2024-27812 #visionOS #Apple #Spatial #Computing #Hack

·securityweek.com·Jun 13, 2024

Apple Patches Vision Pro Vulnerability Used in Possibly ‘First Ever Spatial Computing Hack’

Apple’s AI promise: “Your data is never stored or made accessible to Apple”

And publicly reviewable server code means experts can "verify this privacy promise."

#arstechnica #EN #2024 #Apple #AI #data #privacy #WWDC

·arstechnica.com·Jun 11, 2024

Apple’s AI promise: “Your data is never stored or made accessible to Apple”

Private Cloud Compute: A new frontier for AI privacy in the cloud

Secure and private AI processing in the cloud poses a formidable new challenge. To support advanced features of Apple Intelligence with larger foundation models, we created Private Cloud Compute (PCC), a groundbreaking cloud intelligence system designed specifically for private AI processing. Built with custom Apple silicon and a hardened operating system, Private Cloud Compute extends the industry-leading security and privacy of Apple devices into the cloud, making sure that personal user data sent to PCC isn’t accessible to anyone other than the user — not even to Apple. We believe Private Cloud Compute is the most advanced security architecture ever deployed for cloud AI compute at scale.

#apple #EN #2024 #WWDC #Apple #Security #Research #cloud #AI #PCC #privacy #architecture

·security.apple.com·Jun 11, 2024

Private Cloud Compute: A new frontier for AI privacy in the cloud

macOS version of elusive 'LightSpy' spyware tool discovered

A macOS version of the LightSpy surveillance framework has been discovered, confirming the extensive reach of a tool only previously known for targeting Android and iOS devices.

#bleepingcomputer #EN #2024 #Apple #LightSpy #Malware #Spyware

·bleepingcomputer.com·May 30, 2024

macOS version of elusive 'LightSpy' spyware tool discovered

Why Your Wi-Fi Router Doubles as an Apple AirTag

Apple and the satellite-based broadband service Starlink each recently took steps to address new research into the potential security and privacy implications of how their services geo-locate devices. Researchers from the University of Maryland say they relied on publicly available…

#krebsonsecurity #EN #2024 #Wi-Fi #Router #Apple #WPS #privacy #location

·krebsonsecurity.com·May 24, 2024

Why Your Wi-Fi Router Doubles as an Apple AirTag

How Apple Wi-Fi Positioning System can be abused to track people around the globe

Academics have suggested that Apple's Wi-Fi Positioning System (WPS) can be abused to create a global privacy nightmare. In a paper titled, "Surveilling the Masses with Wi-Fi-Based Positioning Systems," Erik Rye, a PhD student at the University of Maryland (UMD) in the US, and Dave Levin, associate professor at UMD, describe how the design of Apple's WPS facilitates mass surveillance, even of those not using Apple devices.

#theregister #EN #2024 #Apple #Wi-Fi #Positioning #WPS #privacy #abused

·theregister.com·May 24, 2024

How Apple Wi-Fi Positioning System can be abused to track people around the globe

Proton Mail Discloses User Data Leading to Arrest in Spain

Proton Mail came under scrutiny for its role in a legal request by the Spanish authorities leading to the identification and arrest of a user.

#restoreprivacy #EN #2024 #protonmail #proton #disclose #arrest #Apple #privacy #Spain

·restoreprivacy.com·May 7, 2024

Proton Mail Discloses User Data Leading to Arrest in Spain

macOS Adload | Prolific Adware Pivots Just Days After Apple’s XProtect Clampdown 

Learn about the latest Adload adware variants, written in Go and intended to bypass Apple's recent XProtect updates.

#sentinelone #EN #2024 #macOS #Adload #Apple

·sentinelone.com·May 2, 2024

macOS Adload | Prolific Adware Pivots Just Days After Apple’s XProtect Clampdown 

The walls of Apple’s garden are tumbling down

Since the very first iPhone, the walls of Apple’s meticulously manicured garden have grown ever higher. Now, they’re starting to crumble.

#theverge #EN #2024 #Apple #garden #antitrust #policy

·theverge.com·Apr 27, 2024

The walls of Apple’s garden are tumbling down

China Orders Apple to Remove Popular Messaging Apps

WhatsApp, Signal and Telegram among apps cut from iPhone app store to comply with censorship demand

#wsj #EN #2024 #WhatsApp #Signal #Telegram #apple #remove #AppStore #China #censorship

·wsj.com·Apr 20, 2024

China Orders Apple to Remove Popular Messaging Apps

Apple Updates Spyware Alert System to Warn Victims of Mercenary Attacks

Apple's updated spyware alert system now warns individual users of potential targeting by mercenary spyware attacks.

#thehackernews #EN #2024 #Apple #alert-system #Warn #Victims #mercenary-spyware

·thehackernews.com·Apr 11, 2024

Apple Updates Spyware Alert System to Warn Victims of Mercenary Attacks

Les clients Apple victimes de push bombing pour réinitialiser leur identifiant

C’est un matraquage en règle pour obtenir les identifiants Apple ID auquel ont du faire face certains clients de la marque à la pomme. En effet, une vague de phishing de type « push bombing » ou de « fatigue MFA » a sévi récemment assure le site Krebs on Security. Ces techniques consistent, pour les attaquants, à envoyer de manière répétée des notifications d'authentification à deux acteurs (MFA) sur les terminaux Apple.

#lemondeinformatique #FR #2024 #Apple #push-bombing #fatigue-MFA

·lemondeinformatique.fr·Mar 31, 2024

Les clients Apple victimes de push bombing pour réinitialiser leur identifiant

Recent ‘MFA Bombing’ Attacks Targeting Apple Users – Krebs on Security

Several Apple customers recently reported being targeted in elaborate phishing attacks that involve what appears to be a bug in Apple's password reset feature. In this scenario, a target's Apple devices are forced to display dozens of system-level prompts that…

#krebsonsecurity #EN #2024 #MFA-fatigue #attack #Apple #MFA-bombing #password

·krebsonsecurity.com·Mar 27, 2024

Recent ‘MFA Bombing’ Attacks Targeting Apple Users – Krebs on Security

Apple Sued for Prioritizing Market Dominance Over Security

The U.S. Department of Justice in a lawsuit filed Thursday is accusing Apple of discarding user security and privacy protections as part of a broader effort to

#databreachtoday #EN #2024 #Apple #Apple-lawsuit #DOJ #security #privacy #dominance

·databreachtoday.eu·Mar 22, 2024

Apple Sued for Prioritizing Market Dominance Over Security