Stay updated with the latest Apple security news, threats, and updates. Your primary source for all things on Apple information security.
Search across headline titles and summaries.
Background for this topic.
Apple is a prominent technology company known for its range of consumer electronics, software, and services. In the context of information security, Apple represents a key player with a strong emphasis on protecting user data and privacy. The company's hardware and software products, including iPhones, iPads, Mac computers, and the iOS and macOS operating systems, incorporate advanced security features designed to safeguard against cyber threats.
Apple's ecosystem utilizes encryption, secure boot, and app security mechanisms to defend against unauthorized access and data breaches. The company's approach to information security also extends to its constant updates and patches to address vulnerabilities, and its stringent privacy policies that limit data collection and sharing. For cyber security professionals and enthusiasts, monitoring Apple-related security updates, threat intelligence, and vulnerability disclosures is crucial to understand the evolving landscape of digital security as it pertains to Apple's products and services.
Weekly headline count for the current query.
Apple on Monday backported fixes for a recently patched security flaw that has been actively exploited in the wild
CVE-2025-43300 is the latest zero-day bug used in cyberattacks against "targeted individuals," which could signify spyware or nation-state hacking.
Apple has released security updates to address a security flaw impacting iOS, iPadOS, and macOS that it said has come under active exploitation in the wild
Apple on Monday released out-of-band security updates to address a security flaw in iOS and iPadOS that it said has been exploited in the wild
Though the information regarding the exploits is limited, the company did report that Intel-based Mac systems have been targeted by cybercriminals looking to exploit CVE-2024-44308 and CVE-2024-44309.
Public exploit code is now available for the critical Cisco IOS XE vulnerability tracked as CVE-2023-20198 that was leveraged as a zero-day to hack tens of thousands of devices. [...]
Cisco has addressed the two vulnerabilities (CVE-2023-20198 and CVE-2023-20273) that hackers exploited to compromise tens of thousands of IOS XE devices over the past week. [...]
Cisco disclosed a new high-severity zero-day (CVE-2023-20273) today, actively exploited to deploy malicious implants on IOS XE devices compromised using the CVE-2023-20198 zero-day unveiled earlier this week. [...]
More than 40,000 Cisco devices running the IOS XE operating system have been compromised after hackers exploited a recently disclosed maximum severity vulnerability tracked as CVE-2023-20198. [...]
Just a day after Cisco disclosed CVE-2023-20198, it remains unpatched, and one vendor says a Shodan scan shows at least 10,000 Cisco devices with an implant for arbitrary code execution on them. The vendor meanwhile has updated the advisory with more mitigation steps.
Just a day after Cisco disclosed CVE-2023-20198, it remains unpatched, and one vendor says a Shodan scan shows at least 10,000 Cisco devices with an implant for arbitrary code execution on them. The vendor meanwhile has updated the advisory with more mitigation steps.
Apple released security updates for older iPhones to fix a zero-day vulnerability tracked as CVE-2023-41064 that was actively exploited to infect iOS devices with NSO's Pegasus spyware. [...]
Apple released security updates for older iPhones to fix a zero-day vulnerability tracked as CVE-2023-41064 that was actively exploited to infect iOS devices with NSO's Pegasus spyware. [...]