It’s long been speculated that it would be possible to take over a smartphone via a so-called simjacker exploit, which gains remote control of the SIM card. Security researchers have now discovered that governments have been actively using a simjacker attack for at least two years…
Phishing attacks reaching macOS users look set to more than double this year, with emails specifically claiming to be from Apple growing at 30%-40% per year.
In the first half of this year, around 1.6 million phishing attacks attempting to fool people into using their Apple ID credentials to log in to a fake Apple website were detected by a security company…
Last week, Google’s Project Zero security research team detailed what it described as “one of the largest attacks against iPhone users ever.” Now, Apple has responded to Google’s findings – taking issue with many of the claims.
Over the last week, we learned more about a chain of malicious website exploits that targeted iPhone users for years. This evening, a new report from Vice dives deeper into the current state of the security industry, and how the number of iOS exploits continues to grow.
The United States and Poland have signed a joint declaration calling for stronger checks on foreign-made 5G equipment to ensure it doesn’t contain spyware…
A few days ago, Google Project Zero security researchers detailed a chain of malicious website exploits targeting iPhone users. Now, TechCrunch reports that the Chinese government used these attacks to target Uyghur Muslims.
A new report from Vice today details discoveries made by Google Project Zero researchers that “may be one of the largest attacks against iPhone users ever.” The basis of the attacks is a series of hacked websites, which were randomly distributing malware to iPhone users.
Facebook said today that it is beefing up its measures designed to prevent foreign interference in the 2020 presidential election. Election interference by foreign states was found to have played a role in 2016.
A declassified version of a joint intelligence community report revealed that the CIA, FBI, and NSA all agree that Russia interfered in the 2016 US presidential election with fake social media posts and other activities. A number of individuals were subsequently charged with criminal offenses as a result of investigations into this…
After previewing the first Lightning security key for iPhone and iPad back at CES in January, Yubico has launched its YubiKey 5Ci today. The new hardware security key offers both Lightning and USB-C and is compatible with macOS, iOS, and more.
A serious Bluetooth security flaw has been acknowledged by Bluetooth SIG, the official body in charge of standards for the wireless communications technology. It is sufficiently dangerous that the official Bluetooth specification has been changed.
The vulnerability would make it far easier for an attacker to brute-force a pairing with your devices…
A court filing says that Facebook warned staff of the risk that led to a huge security breach that last year allowed hackers to access almost 29 million accounts — but failed to warn its users…
A number of location-based dating apps can be used to track the real-time locations of users, armed with nothing more than their username and the official API…
At the Black Hat security conference today, researchers demonstrated a unique way to bypass Face ID authentication. The foundation of the bypass is a pair of glasses with tape on them, and the Attention Detection feature of Face ID.
After hearing rumors about Apple expanding its bug bounty program earlier this week along with expectations for the company to start giving out dev devices like iPhones to security researchers, Apple has confirmed at the Black Hat conference today a vast expansion to its bounty program along with opening it up to all.
Spectre and Meltdown — bugs created by a major security flaw in Intel and ARM chips — are back in the news today. Both Microsoft and Apple issued patches, but a new exploit has been discovered…
A new report today from The Information details a change coming with iOS 13 that will force WhatsApp and others to redesign their messaging apps. The small but notable change has to do with how third-party apps use iOS to make internet voice calls with the PushKit VoIP API and also run in the background which will be restricted come this fall.
Apple is reportedly set to provide security researchers with unique iPhone models that would allow them to more easily find weaknesses in iOS. Forbes reports that Apple will make this announcement at the Black Hat security conference later this week.
After launching for a limited amount of users back in June, Guardian Firewall + VPN for iOS has now been made available to the public. The popular app features both intelligent firewall and VPN functionality, gives alerts when companies try to track you, and more. If you’d like to test out the app before paying for a subscription, there’s also a free lite version.
Apple has announced in a statement that it is suspending the program which entailed human Apple contractors listening and grading a sample of Siri responses for quality control.
The company is conducting a thorough internal review of its Siri policies, and it will reinstate (a presumably different form of) Siri grading when it is finished. When Siri grading returns, users will be able to choose to opt-out of grading.
An AirDrop security flaw can allow anyone with a laptop and scanning software to see your phone number. The same is true when you share a Wi-Fi password from your iPhone.
Doing the same from a Mac reveals its permanent MAC address instead…
A recent report from CenturyLinkQuote looks at the amount of money Americans lost last year in online scams that were reported to the FBI. Along with the massive total of $2.4 billion in losses, the report breaks down which states had the highest victim rates and highest average losses per victim.
A Chinese national living in the US has been sentenced to 37 months in prison after being convicted of smuggling 40,000 fake Apple products into the country from China …
Google security researchers have discovered six so-called ‘zero interaction’ iOS vulnerabilities – bugs that can allow an attacker to take control of the phone without the user having to do anything other than receive and open a message.
Five of them have been fixed in iOS 12.4, but Apple has not yet been able to completely close the sixth one …