Getty Images reader comments 68 with 46 posters participating, including story author Share this story Last year, Apple enacted App Tracking Transparency, a mandatory policy that forbids app makers from tracking user activity across other apps without first receiving those users’ explicit permission. Privacy advocates praised the initiative, and Facebook warned it would spell certain… Read More »
reader comments 41 with 32 posters participating, including story author Share this story Apple on Thursday released fixes for two critical zero-day vulnerabilities in iPhones, iPads, and Macs that give hackers dangerous access to the internals of the OSes the devices run on. Apple credited an anonymous researcher with discovering both vulnerabilities. The first vulnerability,… Read More »
Kirill Kudryavtsev | Getty Images reader comments 70 with 44 posters participating Share this story Russia’s biggest Internet company has embedded code into apps found on mobile devices that allows information about millions of users to be sent to servers located in its home country. The revelation relates to software created by Yandex that permits… Read More »
reader comments 20 with 20 posters participating Share this story Scammers pushing iOS malware are stepping up their game by abusing two legitimate Apple features to bypass App Store vetting requirements and trick people into installing malicious apps. Apple has long required that apps pass a security review and be admitted to the App Store… Read More »
Getty Images reader comments 58 with 41 posters participating Share this story For the past four months, Apple’s iOS and iPadOS devices and Safari browser have violated one of the Internet’s most sacrosanct security policies. The violation results from a bug that leaks user identities and browsing activity in real time. The same-origin policy is… Read More »
Enlarge / Apple’s AirTags—as seen clipped to a backpack, above—allow users to attempt to find their own device via location rebroadcast from other Apple users. If all else fails, the user can enable a “Lost mode” intended to display their phone number when a finder scans the missing AirTag. reader comments 28 with 25 posters… Read More »
Enlarge / Pseudonymous researcher illusionofchaos joins a growing legion of security researchers frustrated with Apple’s slow response and inconsistent policy adherence when it comes to security flaws. Aurich Lawson | Getty Images reader comments 88 with 56 posters participating, including story author Share this story Yesterday, a security researcher who goes by illusionofchaos dropped public notice… Read More »
reader comments 37 with 30 posters participating Share this story A code execution bug in Apple’s macOS allows remote attackers to run arbitrary commands on your device. And the worst part is, Apple hasn’t fully patched it yet, as tested by Ars. Those shortcut files can take over your Mac Independent security researcher Park Minchan… Read More »
Aurich Lawson | Getty Images reader comments 44 with 39 posters participating Share this story Apple has released several security updates this week to patch a “FORCEDENTRY” vulnerability on iOS devices. The “zero-click, zero-day” vulnerability has been actively exploited by Pegasus, a spyware app developed by the Israeli company NSO Group, which has been known… Read More »
Enlarge / If you don’t maintain good relationships with bug reporters, you may not get to control the disclosure timeline. reader comments 0 with 0 posters participating Share this story The Washington Post reported earlier today that Apple’s relationship with third-party security researchers could use some additional fine tuning. Specifically, Apple’s “bug bounty” program—a way companies… Read More »