iMessage zero-click exploit weaponized to surveil journalists
Researchers at Toronto-based Citizen Lab have recently unearthed an unprecedented cyber-espionage move targeting 37 journalists at Al Jazeera, a major media organization headquartered in Qatar. This campaign was allegedly set in motion using a zero-click exploit chain dubbed Kismet, which hinges on an undocumented iMessage vulnerability.
Apple enforces new rigid app privacy requirements
Apple has made a bold move to pull the plug on app makers’ privacy foul play. The new rules now in effect require that every developer provides a clear-cut summary of what types of data their products collect. This is expected to raise users’ awareness of the potential privacy roadblocks they may hit down the road when using a particular application.
Long-standing Safari bug could fuel misinformation campaigns
The bug allowing this unorthodox exploitation to occur was originally spotted by the MacRumors website crew almost two years ago (in February 2019). In a nutshell, it boils down to an imperfection in the link-sharing feature of Safari on iPhone, iPad, and iPod touch mobile devices. While allowing anyone to add a text excerpt from an arbitrary article to the iMessage link preview...
Dozens of security loopholes discovered in Apple’s services
The white hats – Sam Curry, Ben Sadeghipour, Brett Buerhaus, Samuel Erb, and Tanner Barnes – teamed up in early July 2020 to check Apple’s electronic infrastructure for weak links. The collaboration turned out fruitful as the five enthusiasts pinpointed 55 vulnerabilities in different areas of Apple’s digital “household” over a three-month period.
Here is why sharing your custom iPhone home screen is a bad idea
The latest version of Apple’s operating system for mobile devices comes with awesome UI tweaks, important vulnerability patches, Siri improvements, Safari privacy enhancements, and many more bells and whistles under the hood. One of the features most welcomed by iPhone fans is that the home screen can finally be personalized via widgets, custom wallpapers, and favorite apps library.
Apple patches a critical privilege escalation flaw in iOS and iPadOS
As expected, Apple released the latest versions of its mobile operating systems, iOS 14.0 and iPadOS 14.0, on September 16, 2020. The big event has brought a series of previously announced perks to the iPhone, iPad, and iPod. These include, among other things, UI improvements, Siri enhancements, and privacy tweaks that limit the use of the microphone, camera, and geolocation by apps.