Categories: Exploits and vulnerabilities Categories: News Tags: Apple Tags: macOS Tags: Ventura 13.4 Tags: Monterey 12.6.6 Tags: Big Sur 11.7.7 Tags: libxpc Tags: SIP Tags: XPC Tags: NVRAM Tags: CVE-2023-32369 Tags: Migraine Microsoft has released details about a vulnerability that can bypass macOS’s System Integrity Protection |
The post Microsoft gives Apple a migraine appeared first on Malwarebytes Labs.
Read more
Enterprise admins handling fleets of Macs take note: there’s a new security management tool from Apple device management firm Addigy.
The MDM Watchdog Utility monitors the MDM framework on devices and automatically forces software patches to be installed if they’re not already in place. This is designed to help solve a specific problem in which some (not all) managed Macs do not properly install Apple’s Rapid Security Response updates.
In today’s fast-moving threat environment, Apple has introduced Rapid Security Response (RSR) as a key front line against new threats. The defense is intended to be distributed and installed across Apple’s platforms as swiftly as possible once new threats are identified. The idea is that by expediting distribution and making installation a quicker process, it will be easier to maintain security across Mac fleets. That’s important as the scale of Apple deployments grows and enterprises move to support employee choice.
Categories: Apple Categories: News Tags: macOS Tags: iOS Tags: iPadOS Tags: Rapid Security Response Tags: RSR After announcing Rapid Security Response (RSR) last year, Apple has finally released the first RSR patches to the public. |
The post Apple releases first Rapid Security Response update for iOS, iPadOS, and macOS users appeared first on Malwarebytes Labs.
Read more
When Apple CEO Tim Cook in 2016 warned of a cybersecurity war, he was specifically discussing the pressure Apple then faced to create back doors on its platforms so law enforcement could snoop on users.
He was championing encryption and opposing the creation of designer vulnerabilities that can be exploited by any entity that knows they exist. Since then, we’ve seen a cancerous tumult of surveillance as a service that companies such as the NSO Group break out, each of them using the kind of hard-to-find flaws governments may insist on platform providers creating.
Credit to Author: BrianKrebs| Date: Fri, 21 Apr 2023 01:05:44 +0000
We learned some remarkable new details this week about the recent supply-chain attack on VoIP software provider 3CX, a complex, lengthy intrusion that has the makings of a cyberpunk spy novel: North Korean hackers using legions of fake executive accounts on LinkedIn to lure people into opening malware disguised as a job offer; malware targeting Mac and Linux users working at defense and cryptocurrency firms; and software supply-chain attacks nested within earlier supply chain attacks.
Read more
The Apple-focused enterprise solutions provider ecosystem is growing apace to match the rapidly expanding need of enterprise IT. Jamf recently introduced a new anti-spyware solution for high-value targets. Today, competitor Kandji officially introduced its Endpoint Detection & Response (EDR)) solution, which aims to fight malware on the Mac.
Credit to Author: Alanna Titterington| Date: Mon, 17 Apr 2023 17:25:41 +0000
Due to serious vulnerabilities, you should update your iPhone to iOS 16.4.1 and Mac to macOS 13.3.1. Updates are also available for iOS 15, as well as macOS 11 and 12.
Read moreCategories: Apple Categories: Exploits and vulnerabilities Categories: News Tags: macOS Tags: iOS Tags: iPadOS Tags: watchOS Tags: tvOS Tags: Studio Display Tags: CVE-2023-23529 Tags: type confusion Tags: emoji Apple has released security updates and new features for several of its products, including a fix for an actively exploited vulnerability. |
The post Update now! Apple fixes actively exploited vulnerability and introduces new features appeared first on Malwarebytes Labs.
Read more