 Your new post is loading...
Your new post is loading...
|
Scooped by
Gust MEES
|
Apple has released security updates today for iOS to patch three zero-day vulnerabilities that were discovered being abused in attacks against its users.
According to Shane Huntley, Director of Google's Threat Analysis Group, the three iOS zero-days are related to the recent spat of three Chrome zero-days[1, 2, 3] and a Windows zero-day that Google had previously disclosed over the past two weeks.
Just like in the four previous cases, Google has not shared details about the attacker(s) or their target(s). Learn more / En savoir plus / Mehr erfahren: https://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security
|
|
Scooped by
Gust MEES
|
Une équipe de cinq bidouilleurs chevronnés est partie à la chasse aux failles de sécurité et aux vulnérabilités dans les infrastructures d'Apple. Ce qui a commencé un peu comme un jeu est devenu un passe-temps très prenant : en trois mois (de début juillet à début octobre), Sam Curry, Brett Buerhaus, Ben Sadeghipour, Samuel Erb et Tanner Barnes ont débusqué 55 vulnérabilités, dont 11 critiques, 29 sérieuses, 11 moyennes et 2 faibles. Learn more / En savoir plus / Mehr erfahren: https://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security
|
|
Scooped by
Gust MEES
|
Seit vergangener Woche heißt es für iPhone-Nutzer wieder Update-Zeit, denn Apple hat iOS 14 veröffentlicht. Doch schon kurz nach dem Release wurde der erste größere Bug in iOS 14 entdeckt, der die Standard-Apps bei Browser und Mail-Programm auf Apple-Einstellungen zurücksetzt.
Seit vergangenem Mittwoch stehen iOS 14 und iPadOS 14 zum Download bereit. Mit den neuen Apple-Betriebssystemen stehen Nutzern viele praktische Neuerungen zur Verfügung. Weniger praktisch ist aber ein Bug in iOS 14, den iPhone-Nutzer jetzt entdeckt haben.
So gibt es Meldungen darüber, dass nach der Installation von iOS 14 und dem Neustart die manuell ausgewählten Standard-Apps für Browser und Mail-Programme auf Apple-Einstellungen zurückgesetzt werden. Oder anders gesagt: Wer vor der Installation des iOS-14-Updates etwa Google Chrome als Standard-Browser eingestellt hatte, der hat nach der Installation plötzlich wieder den Safari-Browser von Apple als Standard, wie "9to5mac.com" berichtet. Learn more / En savoir plus / Mehr erfahren: https://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security
|
|
Scooped by
Gust MEES
|
Xcode projects are being exploited to spread a form of Mac malware specializing in the compromise of Safari and other browsers.
The XCSSET malware family has been found in Xcode projects, "lead[ing] to a rabbit hole of malicious payloads," Trend Micro said on Thursday.
In a paper (.PDF) exploring the wave of attacks, cybersecurity researchers said an "unusual" infection in a developer's project also included the discovery of two zero-day vulnerabilities. Learn more / En savoir plus / Mehr erfahren: https://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security
|
|
Scooped by
Gust MEES
|
Sign in with Apple—a privacy-enhancing tool that lets users log in to third-party apps without revealing their email addresses—just fixed a bug that made it possible for attackers to gain unauthorized access to those same accounts.
“In the month of April, I found a zero-day in Sign in with Apple that affected third-party applications which were using it and didn’t implement their own additional security measures,” app developer Bhavuk Jain wrote on Sunday. “This bug could have resulted in a full account takeover of user accounts on that third party application irrespective of a victim having a valid Apple ID or not.”
Jain privately reported the flaw to Apple under the company’s bug bounty program and received a hefty $100,000 payout. The developer shared details after Apple updated the sign-in service to patch the vulnerability.
Sign in with Apple debuted in October as an easier and more secure and private way to sign into apps and websites. Faced with a mandate that many third-party iOS and iPadOS apps offer the option to sign in with Apple, a host of high-profile services entrusted with huge amounts of sensitive user data adopted it. Learn more / En savoir plus / Mehr erfahren: https://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security
|
|
Scooped by
Gust MEES
|
Sicherheitsforscher haben in der Apple Mail-App eine schwerwiegende Sicherheitslücke entdeckt, über die sich Angreifer offenbar Zugriff auf iPhones und iPads verschaffen können. Die Lücke soll den Forschern zufolge seit acht Jahren bestehen. Wie Sie sich vor Angriffen schützen, verraten wir Ihnen im Video. Learn more / En savoir plus / Mehr erfahren: https://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security
|
|
Scooped by
Gust MEES
|
To most iOS users, pasteboard is simply part of the way to copy and paste data from one place to another. Although a malicious app should only be able to access pasteboard data while active, Mysk’s bypass was to write a demo app, KlipboardSpy, paired to a foreground widget visible in Today View, to prove the hack worked under real-world conditions. Moreover:
As the pasteboard is designed to store all types of data, the exploit is not only restricted to leaking location information. By gathering all these types of content, a malicious app can covertly build a rich profile for each user, and what it can do with this content is limitless.
That’s not only location data, then, but potentially anything the user has copied into pasteboard, including passwords and bank details. Learn more / En savoir plus / Mehr erfahren: https://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security https://www.scoop.it/topic/apple-mac-ios4-ipad-iphone-and-in-security/?&tag=iOS
|
|
Scooped by
Gust MEES
|
Die US-amerikanische Sicherheitsfirma Malwarebytes hat ihrem jährlichen Report zum Status von Malware-Angriffen rund um den Globus veröffentlicht. Demnach wurden erstmalig Macs öfter das Ziel von Angriffen als Windows-PCs. Allerdings unterscheiden sich die Arten von Angriffen.
Die Studie konnte eine Steigerung von 400 Prozent in der Gesamtanzahl von Angriffen auf Macs feststellen. Da sich gleichzeitig die Nutzerbasis auf Mac-System erhöht hat, ist die relevantere Angabe die entdeckten Angriffe pro Endpunkt. Das waren 4,8 in 2018, in 2019 ganze 11,0. Eine Steigerung von mehr als 100 Prozent. Zum Vergleich: Windows-Systeme entdeckten durchschnittlich 5,8 Angriffe in 2019. Learn more / En savoir plus / Mehr erfahren: https://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security https://www.scoop.it/topic/apple-mac-ios4-ipad-iphone-and-in-security/?&tag=Mac
|
|
Scooped by
Gust MEES
|
|
|
Scooped by
Gust MEES
|
Apple, qui se présente volontiers comme le champion de la confidentialité, essuie depuis quelques jours une attaque en piqué sur plusieurs fronts. Il y a tout d'abord ces requêtes insistantes — et sans doute pas dénuées d'arrière-pensées — de l'administration Trump pour forer une porte dérobée dans l'iPhone. Il y a également cette histoire d'abandon du chiffrement intégral des sauvegardes iCloud.
On n'est que mercredi, et voici un nouveau souci pour Apple. Des chercheurs de Google ont mis au jour des failles de sécurité dans le système de prévention intelligente du traçage (Intelligent Tracking Prevention, ITP) de Safari. Ironie de l'histoire, ces vulnérabilités ont pu permettre aux malandrins de suivre à la trace les utilisateurs du navigateur, alors que cet ensemble de fonctionnalités est justement censé mettre des bâtons dans les roues des pisteurs professionnels. Learn more / En savoir plus / Mehr erfahren: https://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security https://www.scoop.it/topic/apple-mac-ios4-ipad-iphone-and-in-security/?&tag=Safari
|
|
|
Scooped by
Gust MEES
|
Cela fait quelques années qu'un certain nombre de hackers travaillent sur le mécanisme interne du silicium personnalisé, qui est installé dans les derniers Macs. Ils ont découvert qu'il est possible de pirater la puce de sécurité T2 des récents Mac en combinant des exploits développés afin de pouvoir pirater des téléphones plus anciens. Rick Mark, chercheur en sécurité belge travaillant chez IronPeak, a indiqué que la puce T2 est basée sur l'ancien processeur Apple de la série A10. Cela signifie que l'on peut combiner un exploit développé pour le jailbreaking de l'iPhone, « checkm8 », avec une vulnérabilité du contrôleur mémoire appelée « blackbird ». Cette technique permet non seulement de modifier son comportement, mais aussi d’installer un malware sur la puce.
Learn more / En savoir plus / Mehr erfahren: https://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security
|
|
Scooped by
Gust MEES
|
Probleme in macOS Mojave: Apple zieht Browser- und Sicherheits-Update zurück
Nach Nutzerbeschwerden über teils erhebliche Mac-Probleme hat Apple die Bereitstellung zweier sicherheitsrelevanter Updates für macOS 10.14 gestoppt.
Apple hat das Sicherheits-Update 2020-005 sowie die neue Safari-Version 14.0 für macOS 10.14.6 Mojave zurückgezogen. Beide Updates sollten von der in das Betriebssystem integrierten Software-Aktualisierung in dieser macOS-Version nicht länger zum Download angeboten werden, auch Webseiten mit Download-Links wurden entfernt. Learn more / En savoir plus / Mehr erfahren: https://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security
|
|
Scooped by
Gust MEES
|
MacOS is thought of as more secure than Microsoft’s Windows, but the amount of malware targeting Apple’s operating system is growing. Apple has taken steps to mitigate malware on macOS through a process called notarization—but even this can be bypassed by new and improved adware, a security researcher has discovered.
The adware campaign uses notarized malware, meaning it was scanned and "approved" by Apple and will run on Catalina and Big Sur, security researcher Patrick Wardle has found. “As far as I know, this is the first time hackers have been able to abuse Apple's new notarization,” Wardle told me. Learn more / En savoir plus / Mehr erfahren: https://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security
|
|
Scooped by
Gust MEES
|
Für die Absicherung von iPhone und iPad ist seit dem iPhone 5s ein spezieller Co-Prozessor zuständig, auch Secure Enclave genannt. Nach Berichten soll es allerdings jetzt dem für Jailbreaks bekannten Team Pangu gelungen sein, diesen Sicherheitschip zu knacken. Das sollte eigentlich nicht möglich sein und wäre für Apples Sicherheitskonzept ein schwerer Schlag. Der Chip ist vom System abgeschottet, speichert sensibelste Daten wie Fingerabdruckdaten, FaceID-Daten, Verschlüsselungs-Keys und verspricht Datensicherheit und sicheres Apple Pay. Offensichtlich ist durch diesen Fehler aber der Zugriff auf die Secure Enclave möglich, was sogar ein Entschlüsseln eines iOS-Gerätes ermöglichen würde.
Was die Entdeckung besonders brisant macht: Der Fehler soll den so genannten ROM der Secure Enclave betreffen, einen Nur-Lese-Speicher, den Apple nicht aktualisieren kann. Durch ein Update kann man den Fehler wohl nicht beheben, allenfalls durch das Austauschen des Chips. Auch die Sicherheitschips der Macs sollen betroffen sein. Learn more / En savoir plus / Mehr erfahren: https://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security
|
|
Scooped by
Gust MEES
|
|
|
Scooped by
Gust MEES
|
The vulnerabilities were identified in the Webkit browser engine and Safari. When combined together, the flaws would let infected websites to activate cameras on iPhone, iPad, and Mac.
Eventually, Pickern hijacked the iPhone’s camera and notified Apple product security team about it. The company patched the flaws in January and rewarded Pickern with a handsome amount.
See: Vulnerability in Zoom video conference app lets Mac’s camera hijacking
As for Apple’s Security Bounty Program; launched in December last year, the program offers white hack hackers and security research some big bucks. You can also become a part of it. More information on the Security Bounty Program is available here. Learn more / En savoir plus / Mehr erfahren: https://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security
|
|
Scooped by
Gust MEES
|
The Mac vs. PC debate isn't nearly as intense as it was earlier in the 21st century, but a new malware report could stoke the flames a little bit for the first time in years.
Antivirus company Malwarebytes released a big ol' report about the prevalence of different types of malware across different operating systems this week. There's plenty to chew on, but the most eye-catching finding is that, for the first time anyone can remember, Macs are more susceptible to malware than Windows PCs.
Malwarebytes measured the average number of threats detected per endpoint, which basically means "device" in this context. In 2018, Macs only averaged 4.8 threats per endpoint, but that number ballooned to 11 in 2019. Windows devices, by comparison, only saw 5.8 threats per endpoint last year. Learn more / En savoir plus / Mehr erfahren: https://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security https://www.scoop.it/topic/apple-mac-ios4-ipad-iphone-and-in-security/?&tag=Mac
|
|
Scooped by
Gust MEES
|
Selon un rapport de la solution de sécurité Malwarebytes, les ordinateurs de la marque Apple auraient été victimes de deux fois plus d'infections que les PC Windows en 2019.
Malwarebytes, l'éditeur du logiciel éponyme qui permet de supprimer les logiciels malveillants, vient de publier un rapport sur le niveau de menace actuel des malwares en tous genres. Grâce aux statistiques collectées par la protection en temps réel, la firme a pu analyser les infections détectées pour l'année 2019 partout dans le monde.
La grande surprise de ce rapport concerne les Mac. Alors que les ordinateurs d'Apple sont généralement perçus comme étant plus sûrs que les PC équipés de Windows, les chiffres montrent une tout autre réalité. En 2019, Malwarebytes a détecté en moyenne 11 infections par appareil pour les Mac, largement plus que les 5,8 infections par appareil pour Windows. Ce chiffre a plus que doublé par rapport à 2018, où le logiciel comptait 4,8 infections pour chaque Mac. Learn more / En savoir plus / Mehr erfahren: https://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security https://www.scoop.it/topic/apple-mac-ios4-ipad-iphone-and-in-security/?&tag=Mac
|
|
Scooped by
Gust MEES
|
|
|
Scooped by
Gust MEES
|
From law enforcement to hacking firms everyone wants to hack iPhone. But Google, Apple’s arch-rival of sorts, has been hacking iPhone devices by identifying and exploiting critical vulnerabilities since last year.
This time, Google’s team of white hat hackers at Project Zero has identified exploitable flaws to compromise targeted iPhone devices.
According to Samuel Groß, the clickless flaw doesn’t require the victim to click on a malicious link to infect their device and attackers only need the targeted iPhone’s Apple ID to remotely compromise the phone.
It merely takes a few minutes for a hacker to steal data from the phone including passwords, emails, and text messages along with enabling other functions like microphones and cameras. All this without the user’s permission or knowledge. Learn more / En savoir plus / Mehr erfahren: https://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security https://www.scoop.it/topic/apple-mac-ios4-ipad-iphone-and-in-security/?&tag=iPhone
|
https://achetmorphine.com/
https://achetmorphine.com/produit/achete-klonopin/
https://achetmorphine.com/produit/acheter-4-aco-dmt/
https://achetmorphine.com/product/acheter-5-meo-dmt-usa/
https://achetmorphine.com/product/acheter-dmt/
https://achetmorphine.com/product/polvo-de-ketamina/
https://achetmorphine.com/product/acheter-flakka-a-pvp/
https://achetmorphine.com/product/acheter-mdma-crystal/
https://achetmorphine.com/product/comprar-etizolam/
https://achetmorphine.com/product/comprar-soma-en-linea/
https://achetmorphine.com/product/comprar-ultram-en-linea/
https://achetmorphine.com/product/comprar-micro-mushrooms/
https://achetmorphine.com/product/acheter-seconal-sodium/
https://achetmorphine.com/product/comprar-cianuro-de-sodio/
https://achetmorphine.com/product/acheter-psilocybe-cubensis/
https://achetmorphine.com/product/poudre-de-nembutal/
https://achetmorphine.com/product/golden-teacher-crecer-rapidamente/
https://achetmorphine.com/product/acheter-nembutal-liquide/
https://achetmorphine.com/product/acheter-norvas-10mg/
https://achetmorphine.com/product/acheter-des-pilules-de-nembutal/
https://achetmorphine.com/product/achete-klonopin/
https://achetmorphine.com/product/acheter-adderall-en-ligne/
https://achetmorphine.com/product/acheter-adipex/
https://achetmorphine.com/product/acheter-ambien/
https://achetmorphine.com/product/acheter-amlodipine-en-ligne/
https://achetmorphine.com/product/acheter-buprenorphine-hcl/
https://achetmorphine.com/product/acheter-de-lheroine/
https://achetmorphine.com/product/acheter-de-loxycodone/
https://achetmorphine.com/product/acheter-oxycodone-mallinckrodt/
https://achetmorphine.com/product/acheter-de-loxycodone-sandoz/
https://achetmorphine.com/product/acheter-de-loxycodone/
https://achetmorphine.com/product/acheter-percocet/
https://achetmorphine.com/product/morphine/
https://achetmorphine.com/product/injection-de-morphine/
https://achetmorphine.com/product/acheter-oxycontin/
https://achetmorphine.com/product/acheter-de-la-cocaine/
https://achetmorphine.com/product/acheter-demerol/
https://achetmorphine.com/product/acheter-desoxyn/
https://achetmorphine.com/product/buy-dexedrine-online/
https://achetmorphine.com/product/acheter-dilaudid-en-ligne/
https://achetmorphine.com/product/acheter-du-fentanyl/
https://achetmorphine.com/product/acheter-du-ritalin/
https://achetmorphine.com/product/acheter-du-suboxone/
https://achetmorphine.com/product/acheter-du-xanax-vert/
https://achetmorphine.com/product/acheter-norvas-10mg/
https://achetmorphine.com/product/acheter-oramorph/
https://achetmorphine.com/product/acheter-rubifen/
https://achetmorphine.com/product/acheter-subutex/
https://achetmorphine.com/product/acheter-vicodin/
https://achetmorphine.com/product/acheter-vicodin/
https://achetmorphine.com/product/achetez-vyvanse/
https://achetmorphine.com/product/acheter-xanax/
acquista-oxycontin
acquista-oxycontin
acquista-4-aco-dmt
acquista-5-meo-dmt
acquista-adderall-online
acquista-ambien-online
acquista-buprenorfina-online
acquista-di-sodio
acquista-desoxyn
acquista-dexedrine
acquista-dilaudid-pill
acquista-dmt-online
acquista-fentanil-online
acquista-la-morfina
acquista-ketamina
acquista-lsd
acquista-mdma-crystal
acquista-micro-funghi
acquista-nembutal-liquid
acquista-polvere-nembutale
acquista-polvere-nembutale
acquista-psilocybe-cubensis-b
acquista-la-morphine
acquista-oxycontin
acquista-ossicodone
acquista-subossone
acquista-suboxone
acquista-subutex
acquista-quaaludes
acquista-vicodin
acquista-vyvanse
https://acquistaossicodone.eu/
https://acquistaossicodone.eu/product/acquista-4-aco-dmt/
https://acquistaossicodone.eu/product/acquista-5-meo-dmt/
https://acquistaossicodone.eu/product/acquista-adderall-online/
https://acquistaossicodone.eu/product/acquista-adipex/
https://acquistaossicodone.eu/product/acquista-ambien-online/
https://acquistaossicodone.eu/product/acquista-buprenorfina-online/
https://acquistaossicodone.eu/product/acquista-cianuro-di-sodio/
https://acquistaossicodone.eu/product/acquista-flakka-a-pvp/
https://acquistaossicodone.eu/product/acquista-desoxyn/
https://acquistaossicodone.eu/product/acquista-dexedrine/
https://acquistaossicodone.eu/product/acquista-dmt-online/
https://acquistaossicodone.eu/product/acquista-fentanil-online/
https://acquistaossicodone.eu/product/acquista-la-morfina/
https://acquistaossicodone.eu/product/acquista-la-polvere-di-ketamina/
https://acquistaossicodone.eu/product/acquista-lsd/
https://acquistaossicodone.eu/product/acquista-mdma-crystal/
https://acquistaossicodone.eu/product/acquista-micro-funghi/
https://acquistaossicodone.eu/product/acquista-nembutal-liquid/
https://acquistaossicodone.eu/product/acquista-ossicodone/
https://acquistaossicodone.eu/product/acquista-oxycontin/
https://acquistaossicodone.eu/products/
https://acquistaossicodone.eu/product/acquista-percocet/
https://acquistaossicodone.eu/product/acquista-pillole-di-nembutale/
https://acquistaossicodone.eu/product/acquista-pillole-suboxone/
https://acquistaossicodone.eu/product/acquista-polvere-nembutale/
https://acquistaossicodone.eu/product/acquista-psilocybe-cubensis-b/
https://acquistaossicodone.eu/product/acquista-quaaludes/
https://acquistaossicodone.eu/product/acquista-vicodin/
https://acquistaossicodone.eu/product/acquista-subutex/
https://acquistaossicodone.eu/product/acquista-vyvanse/
https://acquistaossicodone.eu/product/buy-etizolam-usa/
https://acquistaossicodone.eu/product/buy-methamphentamine/
https://acquistaossicodone.eu/product/buy-seconal-sodium/
https://acquistaossicodone.eu/product/buy-soma-online/
https://acquistaossicodone.eu/product/funghi-dorati-dellinsegnante
https://acquistaossicodone.eu/product/strisce-di-subossone/
https://acquistaossicodone.eu/product/strisce-di-subossone/
achete de MORPHINE
achete klonopin
achete 4 dmt
achete 5 meo dmt usa
achete adderall en ligne
achete adipex
achete ambien
achete de la cocaine
achete percocet
achete de loxycodone
achete morphine
achete du suboxone
achete du fentanyl
achete dmt
achete de lheroine
achete klonopin
achete 4 aco dmt
achete 5 meo dmt usa
achete adderall en ligne
achete adipex
achete ambien
achete de la cocaine
achete percocet
achete de loxycodone
achete morphine
achete du suboxone
achete du fentanyl
achete dmt
achete de lheroine
acheter-de-loxycodone
acheter-percocet
morphine
injection-de-morphine
acheter-oxycontin
acheter-de-la-cocaine
acheter-demerol
acheter-desoxyn
buy-dexedrine-online
acheter-dilaudid-en-ligne
acheter-du-fentanyl
acheter-du-ritalin
acheter-du-suboxone
acheter-du-xanax-vert
acheter-norvas-10mg
acheter-oramorph
acheter-rubifen
acheter-subutex
acheter-vicodin
achetez-vyvanse
acheter-xanax
oxycodone
hydromorphone kopen