HackDig : Dig high-quality web security articles

Apple’s 2023 Mac mini is a Mini Mac Studio

Apple’s Mac mini has always seemed like an outlier in the company’s computer line-up. Originally touted as an inexpensive, stripped-down Mac – it was BYODKM, or "bring your own display, mouse, and keyboard" – the Mac mini was marketed for a while to switchers, people moving from Windows to Mac.Over the years, the Mac mini la
Publish At:2023-01-30 09:15 | Read:29408 | Comments:0 | Tags:Apple Mac mini

Third-Party App Stores Could Be a Red Flag for iOS Security

Even Apple can’t escape change forever. The famously restrictive company will allow third-party app stores for iOS devices, along with allowing users to “sideload” software directly. Spurring the move is the European Union’s (EU) Digital Markets Act (DMA), which looks to ensure open markets by reducing the ability of digital “g
Publish At:2023-01-26 15:36 | Read:60450 | Comments:0 | Tags:Mobile Security Risk Management App Security Apple Apple App

VASTFLUX ad fraud massively affected millions of iOS devices, dismantled

Researchers have successfully dismantled a massive ad fraud campaign they stumbled upon by accident.  The Satori Threat Intelligence and Research Team dubbed the campaign VASTFLUX, a portmanteau of "fast flux"—an evasion technique involving the constant changing of IP addresses behind a single domain—and "VAST" (Video Ad Serving Te
Publish At:2023-01-24 22:15 | Read:85444 | Comments:0 | Tags:Apple News VASTFLUX HUMAN fast flux VAST Matryoshka JavaScri

Own an older iPhone? Check you're on the latest version to avoid this bug

In December, 2022, we warned our readers about an actively exploited vulnerability in Apple’s WebKit. Back then we wondered why Apple specifically stated that the issue may have been actively exploited against versions of iOS released before iOS 15.1. At the time, our resident Apple expert Thomas Reed said that Apple has been known to release fixes for
Publish At:2023-01-24 22:15 | Read:71869 | Comments:0 | Tags:Apple Exploits and vulnerabilities News iOS 12.5.7 CVE-2022-

Apple iOS 16.3 arrives with support for hardware security keys

Apple released iOS 16.3 today with long-awaited support for hardware security keys to provide extra protection against phishing attacks and unauthorized access to your devices.Hardware security keys are small physical devices that resemble thumb drives and support USB-C (using an adapter) or Near-field communication (NFC) to connect to a Mac or iPhone.These
Publish At:2023-01-23 20:11 | Read:44086 | Comments:0 | Tags:Apple Security IOS security

Apple fixes actively exploited iOS zero-day on older iPhones, iPads

Apple has backported security patches addressing a remotely exploitable zero-day vulnerability to older iPhones and iPads.This bug is tracked as CVE-2022-42856, and it stems from a type confusion weakness in Apple's Webkit web browser browsing engine.Apple said that the flaw discovered by Clément Lecigne of Google's Threat Analysis Group allows m
Publish At:2023-01-23 16:13 | Read:57722 | Comments:0 | Tags:Apple Security IOS exploit

Apple Announces M2 Pro & M2 Max Chips, New MacBook Pros, New Mac mini, and New HomePod

In the latest iteration of Apple’s new in-house processors, the company has announced new versions of its M2 chips: the M2 Pro and the M2 Max. With features similar to the M1 Pro and M1 Max, these processors go much further, with more cores, the ability to use more memory, and lower power consumption. The company also announced new Macs equipped with t
Publish At:2023-01-18 13:57 | Read:53259 | Comments:0 | Tags:Apple

WhatsApp lawsuit against NSO Group greenlit by Supreme Court

On Monday, the US Supreme Court denied the NSO Group's petition for a writ of certiorari, a request to the high court to review its case, signaling that Meta's WhatsApp can go ahead with its case against the Israeli-based company behind the Pegasus spyware. The court didn't explain why it refused to hear the NSO's appeal. If you recall, W
Publish At:2023-01-12 22:15 | Read:74177 | Comments:0 | Tags:News Pegasus spyware Pegasus spyware NSO Group NSO Apple Wha

Apple’s Safari Web Browser is 20 Years Old

Apple introduced the Safari web browser 20 years ago, on January 7, 2003. At the time, Steve Jobs called Safari, "a turbo browser for Mac OS X." Apple created Safari for speed, calling it the fastest browser for the Mac. Jobs compared it to Internet Explorer, Netscape, and Chimera, showing that Safari was faster. The second reason that Apple create
Publish At:2023-01-10 09:15 | Read:65607 | Comments:0 | Tags:Apple Safari

Microsoft details techniques of Mac ransomware

Microsoft warns of different ransomware families (KeRanger, FileCoder, MacRansom, and EvilQuest) targeting Apple macOS systems. Microsoft Security Threat Intelligence team warns of four different ransomware families (KeRanger, FileCoder, MacRansom, and EvilQuest) that impact Apple macOS systems. The initial vector in attacks involving Mac ransomware ty
Publish At:2023-01-06 15:49 | Read:108654 | Comments:0 | Tags:Breaking News Cyber Crime Hacking Malware Apple Cybercrime E

France fines Apple for targeted App Store ads without consent

France's data protection authority (CNIL) has fined Apple €8,000,000 ($8.5M) for collecting user data for targeted advertising on the App Store without requesting or securing the user's consent.This practice is considered a violation of Article 82 of the French Data Protection Act (DPA), a national directive that aligns with the GDPR (General Data Prote
Publish At:2023-01-05 16:13 | Read:87112 | Comments:0 | Tags:Apple Government Technology

Apple Security and Privacy in 2022: The Year in Review

There was no shortage of Apple security and privacy news in 2022. Every year, Apple touts new privacy and security features in its operating systems, and develops some of the most modern features to keep you safe. At the same time, malware evolves, new cybersecurity threats come to light, and new vulnerabilities are discovered in operating systems and apps.
Publish At:2023-01-05 06:01 | Read:82076 | Comments:0 | Tags:Security & Privacy Apple privacy security

Microsoft shares details for a Gatekeeper Bypass bug in Apple macOS

Microsoft disclosed technical details of a vulnerability in Apple macOS that could be exploited by an attacker to bypass Gatekeeper. Microsoft has disclosed details of a now-fixed security vulnerability dubbed Achilles (CVE-2022-42821, CVSS score: 5.5) in Apple macOS that could be exploited by threat actors to bypass the Gatekeeper security feature. Th
Publish At:2022-12-20 11:50 | Read:121973 | Comments:0 | Tags:Breaking News Hacking Apple CVE-2022-42821 Gatekeeper hackin

A week in security (December 12 - 18)

Last week on Malwarebytes Labs: Indiana sues TikTok, describes it as "Chinese Trojan Horse" Iranian hacking group uses compromised email accounts to distribute MSP remote access tool Electronic Sales Suppression Tools are cooking the books Silence is golden partner for Truebot and Cl0p ransomware iPhone user watches as stolen phone travels from UK to China
Publish At:2022-12-19 22:14 | Read:102375 | Comments:0 | Tags:News week in security AWIS weekly blog recap Indiana TikTok

Microsoft: Achilles macOS bug lets hackers bypass Gatekeeper

Apple has fixed a vulnerability attackers could leverage to deploy malware on vulnerable macOS devices via untrusted applications capable of bypassing Gatekeeper application execution restrictions.Found and reported by Microsoft principal security researcher Jonathan Bar Or, the security flaw (dubbed Achilles) is now tracked as CVE-2022-42821.Apple addressed
Publish At:2022-12-19 16:12 | Read:140973 | Comments:0 | Tags:Security Apple Microsoft hack

Announce

Share high-quality web security related articles with you:)
Tell me why you support me <3

Tag Cloud