Search cyberveille.decio.ch

Found 90 bookmarks

Custom sorting

Apple discloses 2 new zero-days exploited to attack iPhones, Macs

Apple released emergency security updates to fix two new zero-day vulnerabilities exploited in attacks targeting iPhone and Mac users, for a total of 13 exploited zero-days patched since the start of the year.

#bleepingcomputer #EN #2023 #Apple #Apple-Watch #Code-Execution #iOS #iPhone #Mac #watchOS #Zero-Day

·bleepingcomputer.com·Sep 7, 2023

Apple discloses 2 new zero-days exploited to attack iPhones, Macs

New Apple iOS 16 Exploit Enables Stealthy Cellular Access Under Fake Airplane Mode

Cybersecurity researchers have documented a novel post-exploit persistence technique on iOS 16 that could be abused to fly under the radar and maintain access to an Apple device even when the victim believes it is offline. The method "tricks the victim into thinking their device's Airplane Mode works when in reality the attacker (following successful device exploit) has planted an artificial Airplane Mode which edits the UI to display Airplane Mode icon and cuts internet connection to all apps except the attacker application," Jamf Threat Labs researchers Hu Ke and Nir Avraham said in a report shared with The Hacker News.

#thehackernews #EN #2023 #iOS #apple #airplanemode #exploit

·thehackernews.com·Aug 19, 2023

New Apple iOS 16 Exploit Enables Stealthy Cellular Access Under Fake Airplane Mode

Apple issues third mobile OS update after zero-click spyware campaign

The patch is the latest to address issues associated with what cybersecurity firm Kaspersky called Operation Triangulation.

#cyberscoop #EN #2023 #Apple #Triangulation #zero-click #iOS #CVE-2023-38606

·cyberscoop.com·Jul 26, 2023

Apple issues third mobile OS update after zero-click spyware campaign

Apple confirms WebKit security updates break browsing on some sites

Apple confirmed today that emergency security updates released on Monday to address a zero-day bug exploited in attacks break browsing on some websites, and new ones will be released soon to address this known issue.

#bleepingcomputer #Apple #iOS #macOS #Rapid-Security-Response #Security-Update #WebKit

·bleepingcomputer.com·Jul 12, 2023

Apple confirms WebKit security updates break browsing on some sites

Apple releases emergency update to fix zero-day exploited in attacks

Apple has issued a new round of Rapid Security Response (RSR) updates to address a new zero-day bug exploited in attacks and impacting fully-patched iPhones, Macs, and iPads.

#bleepingcomputer #EN #2023 #CVE-2023-37450 #Apple #iOS #iPad #iPhone #Mac #macOS #Rapid-Security-Response #Zero-Day

·bleepingcomputer.com·Jul 12, 2023

Apple releases emergency update to fix zero-day exploited in attacks

Dissecting TriangleDB, a Triangulation spyware implant

In researching Operation Triangulation, we set ourselves the goal to retrieve as many parts of the exploitation chain as possible. As of now, we have finished analyzing the spyware implant and are ready to share the details.

#securelist #EN #2023 #Apple #iOS #APT #Malware-Descriptions #Spyware #Targeted-attacks #Triangulation #malware

·securelist.com·Jun 21, 2023

Dissecting TriangleDB, a Triangulation spyware implant

Increased Enterprise Use of iOS, Mac Means More Malware

As use of Apple devices has grown in the enterprise, the company has increasingly become a target for malware threats and other attacks. ISMG spoke with experts and

#Apple #iOS #macOS #MDM #malware-threats #bankinfosecurity #EN #2022 #entreprise

·bankinfosecurity.com·Apr 16, 2022

Increased Enterprise Use of iOS, Mac Means More Malware

“Clickless” iOS exploits infect Kaspersky iPhones with never-before-seen malware | Ars Technica

"Operation Triangulation" stole mic recordings, photos, geolocation, and more.

#arstechnica #EN #2023 #Triangulation #iOS #Apple #kaspersky #Russia #spyware #NSA

·arstechnica.com·Jun 2, 2023

“Clickless” iOS exploits infect Kaspersky iPhones with never-before-seen malware | Ars Technica

A Matter of Triangulation.

Hi all, Today we have very big and important news. Kaspersky experts have discovered an extremely complex, professionally targeted cyberattack that uses Apple’s mobile devices. The purpose of this attack is the inconspicuous introduction of spyware into the iPhones of employees of the company – both top and middle-management. The attack is carried out using

#kaspersky #EN #2023 #iOS #0-Click #Triangulation #iphone #spyware #Apple

·eugene.kaspersky.com·Jun 2, 2023

A Matter of Triangulation.

Apple fixes three new zero-days exploited to hack iPhones, Macs

Apple has addressed three new zero-day vulnerabilities exploited in attacks to hack into iPhones, Macs, and iPads.

#bleepingcomputer #EN #2023 #Apple #iOS #iPhone #Mac #macOS #WebKit #Zero-Day

·bleepingcomputer.com·May 23, 2023

Apple fixes three new zero-days exploited to hack iPhones, Macs

What if we had the SockPuppet vulnerability in iOS 16?

The next post in our XNU memory safety series examines how our hardened kernel allocator performs in the real world against a previously patched but powerful UAF software vulnerability. In this detailed analysis, we find out what might happen if SockPuppet were to meet kalloc_type in iOS 16.

#security.apple #EN #2023 #SockPuppet #iOS #research

·security.apple.com·May 23, 2023

What if we had the SockPuppet vulnerability in iOS 16?

Apple’s high security mode blocked NSO spyware, researchers say | TechCrunch

Apple has fixed the three exploits used to deploy the Pegasus spyware, which did not require any interaction from the target.

#techcrunch #EN #2023 #apple #citizen-lab #ios #iphone #malware #nso #nso-group #spyware #LockdownMode

·techcrunch.com·Apr 19, 2023

Apple’s high security mode blocked NSO spyware, researchers say | TechCrunch

DEV-0196: QuaDream’s “KingsPawn” malware used to target civil society in Europe, North America, the Middle East, and Southeast Asia

Microsoft analyzes a threat group tracked as DEV-0196, the actor’s iOS malware “KingsPawn”, and their link to an Israel-based private sector offensive actor (PSOA) known as QuaDream, which reportedly sells a suite of exploits, malware, and infrastructure called REIGN, that’s designed to exfiltrate data from mobile devices.

#microsoft #EN #2023 #QuaDream #spyware #spy #IoCs #DEV-0196 #iOS #calendar #zero-click #REIGN

·microsoft.com·Apr 11, 2023

DEV-0196: QuaDream’s “KingsPawn” malware used to target civil society in Europe, North America, the Middle East, and Southeast Asia

Mercenary spyware hacked iPhone victims with rogue calendar invites, researchers say | TechCrunch

Researchers found malware developed by QuaDream, a little-known government spyware maker, which was used against journalists and politicians.

#techcrunch #EN #2023 #security #apple #cybersecurity #hackers #hacking #ios #iphone #spyware #zero-days

·techcrunch.com·Apr 11, 2023

Mercenary spyware hacked iPhone victims with rogue calendar invites, researchers say | TechCrunch

Apple fixes two zero-days exploited to hack iPhones and Macs

Apple has released emergency security updates to address two new zero-day vulnerabilities exploited in attacks to compromise iPhones, Macs, and iPads.

#Apple #EN #2023 #updates #zero-day #vulnerabilities #ios #macos

·bleepingcomputer.com·Apr 7, 2023

Apple fixes two zero-days exploited to hack iPhones and Macs

Apple patches are out – old iPhones get an old zero-day fix at last!

Don’t delay, especially if you’re still running an iOS 12 device… please do it today!

#nakedsecurity #EN #2023 #vulnerability #apple #cve-2022-42856 #exploit #ios #ios-12 #ipados #zero-day

·nakedsecurity.sophos.com·Jan 24, 2023

Apple patches are out – old iPhones get an old zero-day fix at last!

zhuowei/WDBFontOverwrite: Proof-of-concept app to overwrite fonts on iOS using CVE-2022-46689.

Proof-of-concept app to overwrite fonts on iOS using CVE-2022-46689. Works on iOS 16.1.2 and below (tested on iOS 16.1) on unjailbroken devices.

#zhuowei #EN #GitHub #PoC #iOS #CVE-2022-46689 #unjailbroken #ComicSans

·github.com·Dec 30, 2022

zhuowei/WDBFontOverwrite: Proof-of-concept app to overwrite fonts on iOS using CVE-2022-46689.

Attacking Apple's Neural Engine

WeightBufs is a kernel r/w exploit for all Apple devices with Neural Engine support. Bugs and Exploit by @simo36, you can read my presentation slides at POC for more details about the vulnerabilities and the exploitation techniques.

#0x36 #EN #2022 #WeightBufs #GitHub #Apple #ios #macos #exploit #NeuralEngine #exploitation #CVE-2022-32845 #CVE-2022-32948 #CVE-2022-42805 #CVE-2022-32899

·github.com·Nov 12, 2022

Attacking Apple's Neural Engine

SiriSpy - iOS bug allowed apps to eavesdrop on your conversations with Siri

Any app with access to Bluetooth could record your conversations with Siri and audio from the iOS keyboard dictation feature when using AirPods or Beats headsets. This would happen without the app requesting microphone access permission and without the app leaving any trace that it was listening to the microphone.

#rambo.codes #EN #2022 #iOS #bug #Siri #SiriSpy #Bluetooth #AirPods #privacy

·rambo.codes·Oct 27, 2022

SiriSpy - iOS bug allowed apps to eavesdrop on your conversations with Siri

Apple Fixes Exploited Zero-Day With iOS 16.1 Patch | SecurityWeek.Com

Apple confirms the active exploitation of CVE-2022-42827, warning in a barebones advisory that the flaw exposes iPhones and iPads to arbitrary code execution attacks.

#securityweek #EN #2022 #apple #CVE-2022-42827 #CVE-2022-32894 #CVE-2022-32917 #ios #ipad #iphone #zero-day #exploits #in-the-wild

·securityweek.com·Oct 25, 2022

Apple Fixes Exploited Zero-Day With iOS 16.1 Patch | SecurityWeek.Com

Poseidon’s Offspring: Charybdis and Scylla

HUMAN's Satori Threat Intelligence and Research Team uncovered a network of 89 Android and iOS apps committing various flavors of ad fraud.

#humansecurity #EN #2022 #Android #iOS #ad-fraud #Charybdis #Scylla

·humansecurity.com·Sep 26, 2022

Poseidon’s Offspring: Charybdis and Scylla

The Apple security landscape: Moving into the world of enterprise risk

With the enterprise adoption of MacOS and iOS devices increasing, the Apple security landscape is becoming increasingly complex.

#venturebeat #EN #2022 #MacOS #iOS #security #enterprise #landscape

·venturebeat.com·Sep 23, 2022

The Apple security landscape: Moving into the world of enterprise risk

Apple Kills Passwords in iOS 16 and macOS Ventura | WIRED

With iOS 16 and macOS Ventura, Apple is introducing passkeys—a more convenient and secure alternative to passwords.

#wired #EN #2022 #apple #privacy #passwords #ios #macOS #iOS #passkeys

·wired.com·Sep 22, 2022

Apple Kills Passwords in iOS 16 and macOS Ventura | WIRED

Get root on macOS 12.3.1: proof-of-concepts for Linus Henze’s CoreTrust and DriverKit bugs (CVE-2022-26766, CVE-2022-26763)

Here are two proof-of-concepts for CVE-2022-26766 (CoreTrust allows any root certificate) and CVE-2022-26763 (IOPCIDevice::_MemoryAccess not checking bounds at all), two issues discovered by @LinusHenze and patched in macOS 12.4 / iOS 15.5.

#worthdoingbadly #PoC #EN #2022 #CVE-2022-26766 #CVE-2022-26763 #patched #macOS #iOS #LinusHenze

·worthdoingbadly.com·Sep 16, 2022

Get root on macOS 12.3.1: proof-of-concepts for Linus Henze’s CoreTrust and DriverKit bugs (CVE-2022-26766, CVE-2022-26763)

Hands-on with Lockdown Mode in iOS 16

Lockdown Mode is a new Apple feature you should hope you’ll never need to use. But for those who do, like journalists, politicians, lawyers and human rights defenders, it’s a last line of defense against nation-state spyware designed to punch through an iPhone’s protections. The new security feature was announced earlier this year as an […]

#techcrunch #EN #2022 #apple #LockdownMode #ios #ipad #iphone #handson #ios16

·techcrunch.com·Aug 14, 2022

Hands-on with Lockdown Mode in iOS 16

Get root on macOS 12.3.1: proof-of-concepts for Linus Henze's CoreTrust and DriverKit bugs

#worthdoingbadly #EN #2022 #CVE-2022-26766 #CVE-2022-26763 #proof-of-concepts #macOS #iOS

·worthdoingbadly.com·Jul 3, 2022

Get root on macOS 12.3.1: proof-of-concepts for Linus Henze's CoreTrust and DriverKit bugs

The curious tale of a fake Carrier.app

Although this looks like the real My Vodafone carrier app available in the App Store, it didn't come from the App Store and is not the real application from Vodafone. TAG suspects that a target receives a link to this app in an SMS, after the attacker asks the carrier to disable the target's mobile data connection. The SMS claims that in order to restore mobile data connectivity, the target must install the carrier app and includes a link to download and install this fake app.

#googleprojectzero #EN #2022 #Hermit #ios #CVE-2021-30983 #Vodafone #rcslab

·googleprojectzero.blogspot.com·Jun 24, 2022

The curious tale of a fake Carrier.app

SeaFlower 藏海花 A backdoor targeting iOS web3 wallets

Confiant monitors 2.5+ billion ads per day via 110+ integrations in the advertising stack. This provides great visibility on malicious activity infiltrating the ad stack and the broader Internet. And that includes all the web3 malicious activity funneling thru it. The variety and the range of our detection enable Confiant to detect unique malicious activity as soon as it surfaces. SeaFlower is an example of this unique cluster of malicious activities targeting web3 wallet users that we will document in this blog post.

#objective-see #EN #2022 #web3 #iOS #backdoor #wallet #SeaFlower

·objective-see.org·Jun 13, 2022

SeaFlower 藏海花 A backdoor targeting iOS web3 wallets

CVE-2022-22675: AppleAVD Overflow in AVC_RBSP::parseHRD | 0-days In-the-Wild

Information about 0-days exploited in-the-wild!

#CVE-2022-22675 #googleprojectzero #EN #2022 #0-days #iOS #macOS

·googleprojectzero.github.io·May 17, 2022

CVE-2022-22675: AppleAVD Overflow in AVC_RBSP::parseHRD | 0-days In-the-Wild

Increased Enterprise Use of iOS, Mac Means More Malware

As use of Apple devices has grown in the enterprise, the company has increasingly become a target for malware threats and other attacks. ISMG spoke with experts and

#Apple #iOS #macOS #MDM #malware-threats #bankinfosecurity #EN #2022 #entreprise

·bankinfosecurity.com·Apr 16, 2022

Increased Enterprise Use of iOS, Mac Means More Malware