Apple announces a “major evolution” of the Apple Security Bounty program, doubling its top award to $2M for exploit chains that could be abused for spyware
$2M Top Payout Usman Qureshi / iPhone in Canada : Apple Doubles Security Bounty Rewards to $2 Million Bill Toulas / BleepingComputer : Apple now offers $2 million for zero-click RCE vulnerabilities Ti...
A Citizen Lab report finds that two European journalists had their iPhones hacked with Paragon spyware; Apple fixed the zero-day used in the spyware in February
Act Now To Prevent Attacks Markus Kasanmascheff / WinBuzzer : Apple Confirms iPhone Flaw Was Used to Spy on Journalists Kevin Poireault / Infosecurity : European Journalists Targeted by Paragon Spywar...
iVerify's founder says the FBI is investigating whether China used its access to Verizon networks to infect the iPhones of staff of a US presidential campaign
Thomas Brewster / Forbes :
Leaked documents: Cellebrite couldn't forcibly unlock an iPhone running iOS 17.4 or newer as of April 2024; most of the listed Android devices could be unlocked
Cellebrite, the well-known mobile forensics company, was unable to unlock a sizable chunk of modern iPhones available on the market …
Researchers describe a GPU vulnerability that allows attackers to exfiltrate data from local memory on some devices with Apple, Qualcomm, AMD, and other chips
Patching every device affected by the LeftoverLocals vulnerability—which includes some iPhones, iPads, and Macs—may prove difficult.
Apple blocking Beeper Mini, not a service unto itself but an unauthorized client for a proprietary platform that costs a lot to run, is not anticompetitive
what a shame! I swear, these companies — Meta, Spotify, and Epic come to mind — are the whiniest bastards ever. In a hypothetical situation where Meta made its own phone and Apple wanted to create a...
Researchers detail a zero-click iMessage attack that for over four years used four zero-days to hack iPhones, including dozens belonging to Kaspersky employees
“Triangulation” infected dozens of iPhones belonging to employees of Moscow-based Kaspersky. — Researchers on Wednesday …
iOS 17.2 closes off Flipper Zero devices' ability to carry out DoS attacks on iPhones within a 30-foot radius by continuously sending Bluetooth pairing requests
Adrian Kingsley-Hughes / ZDNet :
After Apple voiced support for California's Right to Repair Act, a look at what's next for the movement, like tackling unsustainable designs and software locks
most notably getting longtime repair foe Apple to concede and support a bill in its home state of California—is that the new legal guarantees around repair ONLY address market competition. … X: @benlo...
A security researcher says that a Flipper Zero device can carry out DoS attacks on iPhones running iOS 17 by continuously sending Bluetooth pairing requests
No cure yet for a popular iPhone attack, except for turning off Bluetooth. — One morning two weeks ago, security researcher Jeroen van der Ham …