Apple News, Articles and Updates

Cryptomining 'Calendar 2' app removed from Apple Store

Apple pulled the popular Mac scheduling app "Calendar 2" amid controversy surrounding the apps buggy cryptomining feature.

Mobile ransomware & banking malware thrive as hackers put focus on mobile

Security patches introduced by Apple and Google reduced instances of jailbreaking and minimised firmware flaws, but the use of mobile ransomware, banking malware, and malicious apps by cyber-criminals shot through the roof in 2017.

Apple's China-based iCloud data centre raises privacy, human rights fears

Human rights activists are concerned that the Chinese government's regulation requiring that Apple host its citizen's iCloud accounts on servers in China could make it easier for that nation to track down dissenters.

Apple patches 'Text Bomb' bug that causes system crashes

Apple just released a patch to fix its crash bug that allowed specially crafted messages to disable access to iMessage and other messaging apps.

Story behind how low-level Apple employee leaked iBoot source code

Much like a horror movie in which a close nit group of friends steal something for a good time only to open Pandora's Box, the story behind how Apple's iBoot source code leaked plays out similar to the plot of 28 Days Later.

Edward Snowden returns to US! Oops, nope, it's a phishing scam

A strange spam campaign that targets Apple customers has been found distributing phishing emails containing an Apple receipt that bills US$ 9.99 (£7) to an Edward Snowden residing at a US address.

Apple's closely-guarded iBoot source code made public on GitHub

Apple's proprietary iBoot source code which loads iOS when iPhones are powered on, leaked on GitHub yesterday, exposing the code to cyber-criminals looking to jailbreak iPhones or to exploit vulnerabilities in the booting process.

MacUpdate hacked, cryptocurrency miner apps installed

A cyber-criminal managed to infiltrate the Mac app download site MacUpdate and install maliciously copies of the Firefox, OnyX, and Deeper applications that were in fact cryptocurrency miners.

Apple releases more updates for Safari, iOS, macOS and more

Apple once again has released security updates for Safari, watchOS, iOS, various macOS systems, and tvOS to address various security issues, some of which could allow an attacker to take control of an infected system.

Malicious 'ChaiOS' link can crash Apple devices

A quirky bug in Apple's Messages application is allowing a malicious GitHub link to cause crashes and other bothersome behaviour on both macOS and iOS machines.

Apple issues Spectre patches for macOS High Sierra, Safari and iOS

Apple followed up on its promise last week and rolled out updates for macOS High Sierra, Safari and iOS to patch the Spectre vulnerabilities CVE-2017-5753 and CVE-2017-5715 in Intel's processor family.

Apple release security updates shortly after releasing another KRACK fix

Apple released security updates for its mobiles, set top box and Window's iCloud platform shortly after rolling out another patch for the KRACK exploits.

Apple addresses KRACK exploits in AirPort Base Station firmware

Apple has continued to roll out patches to fix the KRACK (Key Reinstallation AttaCKs) series of vulnerabilities, this time in its AirPort Base Station firmware.

Apple releases security updates for multiple products

Apple released security updates to patch vulnerabilities in its iOS, mac OS, tvOS and watchOS platforms, some of which could have been used to remotely exploit the affected devices.

MailSploit bugs let spoofed emails bypass DMARC, spam detectors

A collection of vulnerabilities dubbed Mailsploit, found by German security researcher Sabri Haddouche in 30 types of email client applications - from Apple Mail to Mozilla Thunderbird - lets hackers bypass anti-spoofing mechanisms.

Apple issues emergency fix for High Sierra root access flaw

A day after a developer revealed a root access flaw in macOS High Sierra version 10.13.1, Apple released an emergency patch, which it plans to push out today.

Flaw in macOS High Sierra allows easy access

A root access flaw in Apple's macOS High Sierra 10.13.1 makes it possible for anyone to log into the system by typing "root" into the name field.

Smartphone QR code scanners pose new cyber-threat

Apple iOS 11, Apple has QR scanning functionality enabled by default which Elad Ben-Meir says can effectively make anyone scanning the QR code matrices with Apple devices vulnerable to unknowingly uploading malicious code.

Apple addresses KRACK exploits in iOS and macOS updates

Apple has finally addressed the KRACK vulnerabilities in its latest macOS High Sierra, Sierra, El Capitan, iOS 11.1, tvOS and watchOS.

Apple denies claims that it lowered iPhone X face-recognition accuracy

Apple is disputing claims that it ordered manufacturers to lower the accuracy of its face-recognition to make the iPhone X easier to make.

Iphone iOS 11 QR code scanner provides 'backdoor' exploitable by criminals

Apple's new operating system for iPhones and iPads contains a Quick Response (QR)-scanning based 'backdoor' that could be used by cyber-criminals.

Apple issues new security update for macOS High Sierra

Apple issued a supplemental security update for macOS High Sierra 10.13 to patch two issues, one of which fixes a keychain password issue discovered last week.

Apple's iOS 11 release prevents backdoor exploit on Wi-Fi chips

Apple's release of iOS 11 patched an out-of-bounds write vulnerability in Wi-Fi chips that, if exploited, could have allowed attackers within range to execute arbitrary code on the firmware.

Apple patches a potentially critical vulnerability with iOS 11.0.01 update

Apple's iOS 11.01 seems to have addressed previous problems that prevented users from sending emails from and Exchange accounts along with at least one potentially critical security flaw.

MacOS can be exploited to reveal keychain passwords, researcher warns

Launched just days ago, the latest release of Apple's operating system for Macs contains a known zero-day vulnerability that could allow attackers to exfiltrate passwords from the user's keychain.

Apple kills bugs in iCloud for Windows, macOS High Sierra, macOS Server

Apple has issued security updates for its macOS operating system, macOS Server, and iCloud for Windows products, fixing 67 vulnerabilities.

Remotely locked Apple devices being held for ransom

Some Apple product owners have found themselves on the receiving end of a new ransom attack that has someone locking their device most likely using stolen iCloud credentials and initiating the Find My iPhone remote lock feature.

iOS 11 and Apple Watch Series 3, the good, the bad, and the unsecure

With the launch of iOS 11 and the Apple Watch, researchers note Apple's iOS 11 update included eight CVEs that patched vulnerabilities in iBooks, Mail MessageUI, Messages, MobileBackup, Safari, and Webkit.

Apple iOS 11 makes it harder for law enforcement to access data

Apple is doubling down on its privacy beliefs with the latest iOS 11 which will reportedly add at least two new features designed to safeguard its owners' privacy.

MacOS security reputation challenged by new ransomware-as-a-service

Once viewed as nigh-on impregnable, Apple's reputation for secure products is being challenged once again, this time by ransomware-as-a-service.