6 matches found
Apple macOS High Sierra memory corruption vulnerability (CNVD-2018-12245)
Apple macOS High Sierra is a specialized operating system developed by Apple for Mac computers.Windows Server is one of the Window Server components. A security vulnerability exists in the Windows Server component of Apple macOS High Sierra versions prior to 10.13.5. The vulnerability can be...
Apple iOS and macOS High Sierra PluginKit Competitive Conditions Vulnerability
Apple iOS and macOS High Sierra are both products of Apple Inc. Apple iOS is an operating system for mobile devices; macOS High Sierra is a specialized operating system for Mac computers. pluginKit is one of the plugin building components. A competitive condition vulnerability exists in the...
Apple macOS High Sierra Sandbox Security Bypass Vulnerability
Apple macOS High Sierra is a specialized operating system developed by Apple for Mac computers.Sandbox is a sandboxing system that provides the operating system with the ability to limit the way applications use system resources. A security vulnerability exists in the Sandbox component of Apple...
Apple iOS and macOS High Sierra IOKit Component Memory Corruption Vulnerability
Apple iOS and macOS High Sierra are both products of Apple Inc. Apple iOS is an operating system developed for mobile devices; macOS High Sierra is a specialized operating system developed for Mac computers. iOKit is one of the components that reads the system information. A security vulnerabilit...
A week in security (September 25 – October 01)
Recently, we talked about the hacking incident at Deloitte, one of the 'big four' global accounting firms. It was reported that client email addresses, usernames, and passwords were exposed. This also brought to light weaknesses in their policies and lack of threat intelligence to recover leaked...
On the macOS Keychain Attack, Signal’s New Contact Service, the Deloitte Hack, and More
Mike Mimoso and Chris Brook recap the news of the week, including the macOS Keychain attack, Signal’s new private contact discovery service, the Deloitte hack, and a handful of mobile stock trading app vulnerabilities. Download: ThreatpostNewsWrapSeptember292017.mp3 Music by Chris Gonsalves Show...