Google fixes an actively exploited zero-day bug in Chrome
A recent Chrome update takes care of a high-risk flaw that could have been weaponized by North Korean threat actors in attacks against security researchers.
Apple patches more than 60 macOS vulnerabilities in one fell swoop
The latest security updates for macOS Big Sur, Catalina, and Mojave address dozens of loopholes in multiple services, including Safari, Kernel, and WebKit.
iOS update reveals a trio of now-patched security vulnerabilities
The recent releases of iOS 14.4 and iPadOS 14.4 fix three security loopholes that, according to Apple, may have been used in real-world attacks.
Adware remains the largest blot in the Mac threat landscape
According to recent findings of security professionals, Mac malware operators continue to cash in on adware attacks that hinge on human error.
macOS 11.2 will stop Apple’s apps from circumventing third-party firewalls and VPNs
Apple pulls the plug on a macOS Big Sur feature that gave its proprietary services the green light to get around third-party security and privacy tools.
Mac cryptominer uses offbeat anti-analysis tricks to stay undetected
White hats have demystified a five-year-old Mac cryptomining campaign that hinges on a hugely unorthodox technique to fly under the radar.
iMessage zero-click exploit weaponized to surveil journalists
Dozens of journalists at Al Jazeera reportedly fell victim to an eavesdropping campaign with a notorious iMessage interaction-less exploit at its core.
Apple enforces new rigid app privacy requirements
From now on, developers will have to be fair and square about their privacy practices when submitting new apps or updates to Apple’s App Store.
Unencrypted Gatekeeper data puts Mac users’ privacy at risk
Gatekeeper, the technology that’s meant to protect Macs against malware, could expose users’ personal data due to a questionably safe data transfer mechanism.
Vietnamese state-sponsored malware campaign targeting Macs
Researchers have unearthed a new Mac backdoor sample in the wild that’s believed to have ties with a Vietnamese state-funded cybercrime group OceanLotus.