iPhone Archives - Cyber Security Minute

Apple addressed 2 new iOS zero-day vulnerabilities

Issued by: Security Affairs

Apple released emergency security updates to address two zero-day vulnerabilities impacting iPhone, iPad, and Mac devices. The flaws are actively exploited in attacks in the wild, both issues reside in the WebKit browser engine. The first vulnerability, tracked as CVE-2023-42916, is an out-of-bounds read. An attacker can trick a victim into visiting specially crafted web…

Mobile Security

Apple releases iOS 16 update to fix CVE-2023-42824 on older devices

Issued by: Security Affairs

Apple has released iOS 16.7.1 and iPadOS 16.7.1 to address the recently disclosed zero-day CVE-2023-42824. The vulnerability is a privilege escalation issue that resides in the Kernel, it was addressed with improved checks. Last week, Apple released emergency security updates to address a new zero-day vulnerability, tracked as CVE-2023-42824, that is exploited in attacks targeting…

Vulnerabilities

Apple fixed the 17th zero-day flaw exploited in attacks

Issued by: Security Affairs

Apple released emergency security updates to address a new zero-day vulnerability, tracked as CVE-2023-42824, that is exploited in attacks targeting iPhone and iPad devices. The vulnerability is a privilege escalation issue that resides in the Kernel, it was addressed with improved checks. “A local attacker may be able to elevate their privileges. Apple is aware…

Malware & Threats

TianySpy Malware Uses Smishing Disguised as Message From Telco

Issued by: Trend Micro Blog

It has been some time since SMS or text messaging has become a means to spread mobile malware. In September 2021, Trend Micro confirmed a new mobile malware infection chain targeting both Android and iPhone devices. The chain is triggered by a smishing message that appears to be sent from a telecommunications company. It is…

Mobile Security

Apple Warns EU Law ‘Risks Destroying iPhone Security’

Issued by: Security Week

The European Union last year unveiled tough draft rules targeting tech giants like Apple, Google, Amazon and Facebook that could shake up the way Big Tech does business. Cook, speaking at the VivaTech convention for startups in Paris, took aim at some of the rules that target online “gatekeepers” such as Apple which controls which…

Network Security

Google Broke Australian Law Over Location Data Collection: Court

Issued by: Security Week

The US company faces potential fines of “many millions” of dollars over the case, which was brought by the Australian Competition and Consumer Commission (ACCC), the regulators’ chief Rod Sims said. The federal court found that in 2017 and 2018 Google misled some users of phones and tablets featuring its Android operating system by collecting…

Mobile Security, Vulnerabilities

New Jailbreak Tool Works on Most iPhones

Issued by: Dark Reading

Unc0ver, a team of hackers behind the jailbreak tool, released a new tool that works on nearly every iPhone model and exploits a flaw that Apple reported was under active attack last month. The group says its new tool works on iOS 11 to iOS 14.3, which was rolled out in December 2020. It reportedly…

Mobile Security

Apple to Press Ahead on Mobile Privacy, Despite Facebook Protests

Issued by: Security Week

The iPhone maker said it was moving ahead with updates to its mobile operating system to give users more information and control on tracking by apps on Apple devices. Apple earlier this year delayed the changes to give online advertisers time to adapt. But in a letter to the nonprofit group Ranking Digital Rights, Apple…

Network Security

High-risk Google account owners can now use their iPhone as a security key

Issued by: Help Net Security

Google users who opt for the Advanced Protection Program (APP) to secure their accounts are now able to use their iPhone as a security key. About Google’s Advanced Protection Program Google introduced the Advanced Protection Program in late 2017, to help high-risk users – journalists, human rights activists, IT admins, executives, etc. keep their Google…

Mobile Security

Number of smartphone users relying on software-only biometric security to grow 250%

Issued by: Help Net Security

A new report from Juniper Research predicts that the biggest shift in mobile payment security will be the move towards software-based methods, which rely on standard smartphone components. The research forecasts that users of these methods will increase from an estimated 429 million in 2018 to over 1.5 billion in 2023. Juniper believes that this…