Skip to main content
New jailbreak for iOS 13.5 is out

New jailbreak for iOS 13.5 is out

Ethical hackers have released an advanced jailbreak tool that exploits a zero-day vulnerability to support the latest iOS 13.5 version. A crew of hackers collectively calling themselves Unc0ver have masterminded a tool allowing users to jailbreak iOS 11 and later, including iOS 13.5 that went live just last week. The utility circumvents the security and software limitations built into iDevices.

David Balaban
David Balaban
53
iPadOS and iOS 13.5 released that patches vulnerabilities affecting the Mail app

iPadOS and iOS 13.5 released that patches vulnerabilities affecting the Mail app

Apple is rolling out a major update to iOS and iPadOS that addresses serious security flaws and brings several interesting features under the hood. The release of the new iPadOS and iOS 13.5 officially went live on May 20, 2020, and the update is currently underway globally. In addition to the usual bug fixes, stability tweaks, and performance improvements, it has a tangible focus on users’ health through the Exposure Notification API.

David Balaban
David Balaban
163
Major Thunderbolt security loopholes fuel data theft, Macs partially affected

Major Thunderbolt security loopholes fuel data theft, Macs partially affected

A Dutch researcher has unearthed critical flaws in Intel’s Thunderbolt interface that allow an attacker to hack a vulnerable system in minutes. If your computer is equipped with a Thunderbolt port and was manufactured before 2019, then it’s most likely susceptible to a stealth compromise codenamed Thunderspy. It allows an attacker to exploit the interface for bypassing the regular authentication and gaining a foothold in the machine even if it is locked and its hard drive is encrypted.

David Balaban
David Balaban
36
Apple is at odds with DOJ over evidence posing “national security concerns”

Apple is at odds with DOJ over evidence posing “national security concerns”

Apple is confronted with U.S. government intervention in the newsmaking copyright infringement lawsuit against virtualization services provider Corellium. The Department of Justice appears to be hampering the Cupertino technology giant’s efforts to present new evidence in court. DOJ has stated that the materials (photos) may have “national security concerns” and therefore Apple must provide them to federal government officials for examination before enrolling them in the lawsuit.

David Balaban
David Balaban
33
Critical Zoom zero-days are up for sale on the dark web

Critical Zoom zero-days are up for sale on the dark web

Cybercriminals are reportedly selling two undocumented critical Zoom exploits that allow an attacker to infect systems and eavesdrop on users’ communications. As if the previously discovered Zoom security flaws weren’t enough to make people think twice before opting for this virtual conferencing service, analysts have recently bumped into a shady offer circulating in the cybercriminal underground. Hackers have put two critical Zoom zero-day exploits for sale, so any interested party with a sizable budget on their hands can buy and weaponize them.

David Balaban
David Balaban
52
Millions of users installed iOS fleeceware from official App Store

Millions of users installed iOS fleeceware from official App Store

Security analysts are reporting a growth in fleeceware apps promoted on Apple’s App Store as free ones but eventually overcharging users for junk services. Fleeceware is a researchers-coined term denoting applications that follow questionable marketing practices and exhibit the following characteristics: they provide paid features that are available at zero or lower cost in other apps; and they may also pretend to be completely free but end up charging people after a short trial period expires.

David Balaban
David Balaban
33