Exploited

Coming with the release iOS 16.5.1, macOS 13.4.1, and more today, Apple has shipped two important fixes for security flaws. The updates arrive for devices on the latest public software and those on older versions of its software. Notably, Apple has heard the flaws have been actively exploited. The main user-facing feature coming with iOS 16.5.1 is a fix for a bug with the Lightning to USB Camera Adapter. However, for almost all of Apple’s devices including iPhone 6s and later, modern iPads…

Included with iOS 16.5 comes a variety of important security fixes. There are 39 vulnerabilities addressed in the latest iOS update and Apple notes that three of them were reported as actively exploited. Apple shared the latest vulnerability fixes on its security updates page. While iOS had the most at 39, macOS with Safari 16.5, watchOS 9.5, and tvOS 16.5 also include important security updates. So even though there aren’t a lot of new features with the latest updates, they’re important to…

Israeli digital surveillance for hire giant NSO Group reportedly deployed at least three newattacks last year targeting human rights workers and other members of civil society spread out around the world using Apple devices. All of those “zero-click” exploits, according to new research from The Citizen Lab, could tap NSO into a victim’s device without them ever having to click a dirty link or any interaction by the target. Though the new attacks highlight NSO’s continued effort to crack Apple products, there is a silver…

Loyalty may be a virtue, but it can be a vulnerability, too.Although managers tend to value employees perceived as loyal, for example, a new study shows they also tend to exploit loyal workers when assigning unpaid work or extra tasks.These managers are not necessarily nefarious, the researchers note. Some may be oblivious, failing to grasp the ethical results of their decisions.Yet, that's little comfort for dedicated workers, left with excessive workloads as the apparent price of their loyalty."Companies want loyal…

Today Apple has released iOS 16.4.1 and iPadOS 16.4.1 to the public, and your iPhone or iPad may have already notified you about the availability, as Apple pushes such updates to everyone at the same time. You should probably install the update as soon as possible, as it comes with fixes for a couple of actively exploited vulnerabilities. The IOSurfaceAccelerator vulnerability allowed an app to execute arbitrary code with kernel privileges, while the WebKit vulnerability could let maliciously crafted web content to…

Apple's newly-released macOS Ventura 13.2.1 and iOS 16.3.1 didn't add any new features, but that doesn't mean you shouldn't install them. Information gleaned from their release notes shows quite the opposite.Apple says that both new software updates include security fixes that are absolutely worth installing. One of the fixes relates to a WebKit issue that the company notes could already have been actively exploited by bad actors.Update timeThe release notes (opens in new tab) for macOS Ventura 13.2.1 and iOS 16.3.1…

Image: AppleApple has once again released a patch for a likely critical flaw affecting the iPhone 5s, iPhone 6, and older iPads -- models for which it rarely provides security.    Along with patches in iOS 16.3 and macOS Ventura this week, Apple released a rare patch in the iOS 12.5.7 update to protect iOS devices that couldn't upgrade to iOS 15 when it was released in September 2021. These include the iPhone 5s, iPhone 6, iPhone 6 Plus, iPad Air, iPad mini 2, iPad mini 3, and iPod touch (6th generation).The update…

It’s only been a week since Sam Taylor-Johnson’s Amy Winehouse biopic Back to Black began filming in London, but the backlash has already come thick and fast. Over the weekend, pictures of Marisa Abela and Eddie Marsan in character as Amy and her father, Mitch Winehouse, made their way on to Twitter. The reaction was one of pure vitriol, with one particularly viral tweet describing the images of Abela, looking cartoonishly distraught in a halloween costume-level approximation of Winehouse’s trademark beehive, as “fucking…

Since the very dawn of the seventh art, critics and cinephiles have debated … what are the very best LGBT slasher films? It is possible that in a couple of decades, this film will be subject to some kind of bold revisionist reconsideration, some flashy contrarian reassessment, and creep in to the lower reaches of the Top Million. But right about now, there’s not much to be said for it, save for a certain wry irony in the pertly self-aware title.Jordan Ver Hoeve brings minimal nuance to the role of Brian, just starting at…

by Market Trends December 6, 2022 Ankr protocol has swiftly patched the security vulnerability exploited by hackers earlier this weekAnkr, a decentralized finance (DeFi) protocol also popularly known as the first ‘node-as-a-service’ platform, has announced that it has restored security after suffering a hack on Dec 1st. The attackers stole an estimated $5 million worth of BNB across liquidity pools in various DEXes.In the announcement, Ankr states that it has taken the necessary steps to compensate liquidity providers…