Articles tagged "Apple"

Found 78 articles

Researchers have identified a new malware targeting macOS systems called CrashStealer, designed to steal sensitive information from compromised devices. What sets CrashStealer apart from other malware is its use of native C++ for implementation, rather than the more common AppleScript or Objective-C methods. This malware can validate the victim's login password locally, making it harder to detect. The use of a notarized dropper allows it to bypass Apple's Gatekeeper security checks, increasing its chances of successfully infecting systems. Users of macOS should be cautious and ensure their devices are protected against such threats, as this malware can lead to significant data breaches.

Read Original
Actively Exploited

The Cybersecurity and Infrastructure Security Agency (CISA) has added a new vulnerability, CVE-2008-4128, to its Known Exploited Vulnerabilities Catalog. This vulnerability affects Cisco IOS and is associated with cross-site request forgery, which allows attackers to exploit vulnerable systems. It poses significant risks, particularly for federal agencies, as it can lead to total control over affected assets after exploitation. CISA's Binding Operational Directive 26-04 emphasizes the need for federal agencies to prioritize rapid remediation of such high-risk vulnerabilities. While this directive primarily applies to federal agencies, CISA encourages all organizations to adopt similar practices for managing vulnerabilities effectively. Agencies are also urged to check for any compromises before applying patches to mitigate risks.

Read Original

QuimaRAT is a new type of malware that can target multiple operating systems, including Windows, Linux, and macOS. It operates on a modular architecture, which means it can expand its capabilities through encrypted plugins that are delivered via a command-and-control infrastructure. This flexibility allows attackers to adapt the malware for various malicious purposes. The versatility of QuimaRAT raises concerns for users across different platforms, as it poses a significant risk to both personal and organizational security. Companies and individuals should be vigilant and consider implementing security measures to protect their systems from this evolving threat.

Read Original

Researchers from Jamf Threat Labs have identified a new malware targeting macOS users, named PamStealer. This information stealer masquerades as a legitimate application called Maccy, which is a popular open-source clipboard manager. By distributing a compiled AppleScript file that looks legitimate, PamStealer tricks users into downloading it. Once installed, it seeks to extract sensitive information, including Mac login passwords. This incident is concerning for Mac users, as it highlights the ongoing risks posed by malware that exploits trusted applications to gain access to personal data.

Read Original

This week's security updates reveal a series of vulnerabilities across various systems, including browsers, AI tools, and email services. Researchers discovered that many of these weaknesses stem from small permission gaps and inadequate security checks, which attackers can exploit. Notably, the article mentions the BlueHammer ransomware, which targets businesses by leveraging these types of vulnerabilities. This situation underscores the need for organizations to regularly assess their security measures and patch any identified weaknesses to prevent potential breaches. Overall, the findings serve as a reminder that even seemingly secure systems can harbor significant risks if not properly maintained.

Read Original

Attackers are currently exploiting a vulnerability in SimpleHelp, identified as CVE-2026-48558, which allows for an authentication bypass. This vulnerability has been patched, but it is actively being used to deploy Djinn Stealer malware on victim systems. Djinn Stealer is a versatile piece of malware that targets various operating systems, including Windows, macOS, and Linux. It collects sensitive credentials from a wide range of applications, including cloud services, source control, and cryptocurrency wallets. The situation poses a significant risk to users of SimpleHelp, particularly managed service providers, as the malware can compromise sensitive data and systems.

Read Original

Researchers have identified six security vulnerabilities in AirDrop and Quick Share, features that allow users to share files wirelessly. An attacker within close proximity can exploit these flaws to crash the file-sharing services on devices like Macs and iPhones that are set to receive from anyone, without needing any prior connection or user interaction. This means that anyone nearby could potentially disrupt these services simply by having a laptop. The same vulnerabilities also affect Samsung's Quick Share feature. This is concerning because it could lead to service interruptions for users and potentially allow attackers to conduct further malicious activities while users are distracted by the crashes. Users should be cautious about their AirDrop and Quick Share settings, especially in public spaces.

Read Original

Hackers are taking advantage of a serious vulnerability (CVE-2026-48558) in SimpleHelp, a remote support software, to deploy a new type of malware known as Djinn Stealer. This malware is capable of stealing information across multiple operating systems, including Windows, macOS, and Linux. Users of SimpleHelp are at risk as the flaw allows attackers to infiltrate systems and extract sensitive data without detection. The emergence of this undocumented malware raises concerns about the security of remote support tools, as they are commonly used by businesses and individuals for remote access. It is crucial for users to remain vigilant and apply any necessary updates to protect their information.

+1 more
Read Original

Cybersecurity researchers have identified two hijacked npm packages and several compromised Go packages that are being used to deliver a Python-based information stealer to affected systems. This malware targets Windows, Linux, and macOS devices, making it a broad threat to developers and users of these platforms. Notably, the attack circumvents common npm execution paths, which may be an effort to bypass security measures introduced in npm version 12. The presence of these malicious packages poses a significant risk, as they could lead to unauthorized data access and theft. Developers and users need to be vigilant and ensure they are not using these compromised packages in their projects.

Read Original

A recent report from The Citizen Lab reveals that a Russian government investigative unit hacked the iPhone of opposition politician Andrey Pivovarov using Cellebrite's UFED tool in June 2021. This incident raises serious concerns about the misuse of hacking technology against political dissidents. Cellebrite, a company known for its phone extraction tools, reportedly cut ties with Russian entities, yet their technology was still used in this attack. The implications of such actions highlight the ongoing risks faced by activists and politicians in authoritarian regimes, where surveillance and digital espionage are common. This incident serves as a reminder of the vulnerabilities that exist for individuals opposing oppressive governments.

Read Original

A recently discovered flaw in macOS allows standard users to disable Endpoint Detection and Response (EDR) and Mobile Device Management (MDM) features, which are critical for maintaining device security and management. This vulnerability could be exploited by malicious actors to weaken security controls, making it easier for them to execute attacks or gain unauthorized access to sensitive data. All macOS versions that support EDR and MDM functionalities are affected. Organizations using these features should be particularly vigilant, as the ability for unauthorized users to disable such protections can lead to significant security risks. As of now, there is no indication that this vulnerability is being actively exploited in the wild, but the potential for misuse remains a concern for IT departments.

Read Original

A new exploit called Usbliter8 has been discovered that bypasses Apple’s boot defenses, affecting millions of iPhones. This vulnerability cannot be patched, and researchers have released a proof-of-concept exploit, raising concerns about the potential for misuse. Users of affected iPhone models should be particularly vigilant, as this exploit could allow attackers to gain unauthorized access to devices. The widespread nature of this issue makes it critical for Apple to address, as it could lead to increased risks for personal data and security. As of now, there are no known patches or updates to mitigate this vulnerability, leaving many devices exposed.

Read Original

Recent research from Wake Forest University has revealed that many AI-powered iOS applications are exposing sensitive credentials. Out of 444 apps analyzed, 282 were found to have vulnerabilities that could allow attackers to access backend services and exploit user data. These affected apps span multiple categories, including productivity, entertainment, and education. This situation raises serious concerns about user privacy and the security measures that developers are implementing. It serves as a reminder for app developers to strengthen their security practices and for users to be cautious about the apps they install and the information they share.

Read Original

Apple has released a security update to address a vulnerability in its Beats Studio Buds, identified as CVE-2025-20701. This flaw was uncovered by researchers Dennis Heinze and Frieder Steinmetz from ERNW GmbH. While the specific nature of the vulnerability has not been detailed, it poses a potential risk to users of the Beats Studio Buds, which are popular wireless earbuds. Users are encouraged to install the latest firmware update to ensure their devices are protected. Ignoring this update could leave users vulnerable to potential exploits that might compromise their audio experience or privacy.

Read Original

Apple has addressed a significant security vulnerability in its Beats Studio Buds wireless earbuds that could have allowed hackers within Bluetooth range to eavesdrop on conversations. This flaw posed a risk to users, as it could potentially compromise their privacy during sensitive discussions. Apple has rolled out security updates to fix this issue, emphasizing the importance of keeping devices up to date with the latest software. Users of Beats Studio Buds should ensure they apply these updates promptly to protect against potential unauthorized access. This incident serves as a reminder of the vulnerabilities that can exist in everyday technology and the need for manufacturers to prioritize user security.

Read Original
Page 1 of 6Next