Hackers can exploit an iPhone HomeKit vulnerability dubbed “doorLock” on iPhones to launch persistent denial of service (DoS) attacks, a researcher says.
Apple has released a security update for iOS 12.5.4 to fix two vulnerabilities (CVE-2021-30761 and CVE-2021-30762) exploited in the wild.
Apple has released security updates to fix vulnerabilities in iOS 14.4, watchOS 7.3, Xcode 12.4, iCloud for Windows 12.0 and tvOS 14.4. As part of the updates, the tech giant also addressed three zero-day iOS vulnerabilities exploited in the wild.
Apple has released security updates for macOS Catalina 10.15.5, Safari 13.1.1, iOS 13.5 and other products.
A group of hackers have been using compromised websites to launch watering hole attacks against iPhone users who visit the websites. The attacks also use five different exploit chains and exploit 0-day vulnerabilities that don’t require any user interaction.
A serious bug has been discovered in FaceTime, Apple’s video and chat app for iPhones. The vulnerability can allow a user to listen in on another iPhone user’s conversation before they pickup and without the recipient’s knowledge.
An attacker has used an open-source mobile device management (MDM) system to target iPhones in India.
Fitness app and social media company Strava has introduced a Global Heatmap service, that may have allowed many service people to inadvertently expose the locations of their military bases.