Hot Topics

Apple

Apple’s AI Challenges in the EU: A Casual Take

| | Apple, artificial intel
So, Apple has stated that it is uncertain if it is bringing some of its AI features to the EU -- there’s a lot to unpack here. They say they're unsure if their ...
Joel Esler
Apple CEO Tim Cook, looking grim

‘Perfect 10’ Apple Supply Chain Bug — Millions of Apps at Risk of CocoaPods RCE

| | App Sec & Supply Chain Security, Apple, Apple iOS, AppSec & Supply Chain Security, CocoaPods, CVE-2024-38366, CVE-2024-38368, dependencies, dependency injection, Dependency Management, macos, macOS Security, Modern Software Supply Chains, Open Source and Software Supply Chain Risks, open source software supply chain, open source software supply chain security, SB Blogwatch, software dependencies, Supply-Chain Insecurity, third-party dependencies, trust dependencies
Tim looks grim: 10 year old vulnerabilities in widely used dev tool include a CVSS 10.0 remote code execution bug ...
Security Boulevard
app, sideloading, MDM, Apple, IoS, SEC SIM swap X account

EU Opens the App Store Gates: A Call to Arms for MDM Implementation

| | Apple, MDM, sideloading
By introducing a mobile device management (MDM) platform into the existing infrastructure, administrators gain the ability to restrict sideloading on managed devices ...
Security Boulevard
Citizen Lab vs. NSO Group: The Fight for Privacy

Citizen Lab vs. NSO Group, Apple AI and Privacy

| | AI, Apple, Apple AI, Apple Intelligence, canada, Citizen Lab, court, Cyber Security, Cybersecurity, Data Privacy, Digital Privacy, Episodes, Human Rights, Information Security, Infosec, lawsuit, NSO Group, Pegasus, Podcast, Podcasts, Privacy, security, spyware, technology, Weekly Edition
In episode 334, hosts Tom Eston, Scott Wright, and Kevin Johnson discuss two major topics. First, they explore the ongoing legal battle between Citizen Lab and the Israeli spyware company NSO Group ...
Shared Security Podcast
A T-shirt, reading “You are here”

Apple API Allows Wi-Fi AP Location Tracking

| | Apple, apple bug, customer location, geofencing and location tracking, geolocation, GPS location, Location, location access risks, location data, Location data privacy, location privacy, location services, location sharing location tracking, SB Blogwatch, Skyhook, Starlink, Tibro, Wi-Fi, wi-fi security
Privacy FAIL: Apple location service returns far more data than it should—to people who have no business knowing it—and without your permission ...
Security Boulevard
New Tracker Warning Features on iPhones & Androids!

New Tracker Warning Features on iPhones & Androids, 2024 Verizon Data Breach Investigations Report

| | AI, AI Hype, AirTag, Android 6, Apple, bluetooth, Cyber Security, Cybersecurity, Data breaches, Data Privacy, Digital Privacy, Episodes, Exploits, google, Information Security, Infosec, ios, Malware, Phishing, Podcast, Podcasts, Privacy, Secret Trackers, security, social engineering, Stalking, technology, trackers, verizon, Verizon DBIR, Vulnerabilities, Weekly Edition
In episode 330 Tom, Scott, and Kevin discuss the new features for iPhones and Android phones designed to warn users about secret trackers, possibly aiding in identifying stalkers. The hosts discuss Apple ...
Shared Security Podcast
Three South Korean soldiers stand guard at the DMZ between North and South Korea

South Korean iPhone Ban: MDM DMZ PDQ

| | android, Apple, Apple iOS, Apple iPhone, bring your own device, byod, byod challenges, BYOD policy, BYOD Security, clandestine iPhone tracking, iPhone, iPhone and iPad, iphone security, Korea, Korean military, MDM, military, military grade security, Military Security, Mobile Device Management (MDM), North Korea, northkorea, Noth Korea, Operational military strategy, opsec, Samsung, Samsung Galaxy, SB Blogwatch, South Korea, southkorea
MDM Hindered: Android phones are still OK; this is Samsung’s home, after all ...
Security Boulevard

Dracula Phishing Platform Targets Organizations Worldwide

| | Advanced phishing techniques, Apple, countermeasures, Cyber Threats, cybercriminals, Cybersecurity, Cybersecurity News, Domain registration, Dracula phishing platform, Email spoofing, imessage, Malicious intent, Netcraft, online safety, Password reset protection, RCS protocol, security measures, SMS filters, User Awareness
In light of recent cyber threats, the Dracula phishing platform has prevailed, targeting organizations in over 100 countries. The Dracula phishing attacks are centered on leveraging an immense network of over 20,000 ...
TuxCare
Multiple, unskippable notifications

Apple OTP FAIL: ‘MFA Bomb’ Warning — Locks Accounts, Wipes iPhones

| | 2fa, 2FA bypass, 2FA Flaws, 2FA phishing, 2FA solution, 2FA/MFA, Apple, apple bug, Apple Data Security, apple hack, apple hacker, Apple iCloud, Apple ID, Apple ID failure, Apple iOS, Apple iPad, Apple iPhone, bypass 2FA, MFA, MFA Bombing, mfa fatigue, MFA hacks, mfa protection, mfasecurity, Multi-Factor Authentication (MFA), OTP, OTP circumvention bot, OTP interception bot, phishing-resistant MFA, push otp, SB Blogwatch, TOTP, two-factor-authentication.2fa
Rethink different: First, fatigue frightened users with multiple modal nighttime notifications. Next, call and pretend to be Apple support ...
Security Boulevard

Hardware Vulnerability in Apple’s M-Series Chips

| | Apple, encryption, hardware, side-channel attacks, Uncategorized
It’s yet another hardware side-channel attack: The threat resides in the chips’ data memory-dependent prefetcher, a hardware optimization that predicts the memory addresses of data that running code is likely to access ...
Schneier on Security
Load more

Application Security Check Up