Lucene search
K

3591 matches found

The Hacker News
The Hacker News
added 2023/09/12 6:13 a.m.49 views

Beware: MetaStealer Malware Targets Apple macOS in Recent Attacks

A new information stealer malware called MetaStealer has set its sights on Apple macOS, making the latest in a growing list of stealer families focused on the operating system after MacStealer, Pureland, Atomic Stealer, and Realst. "Threat actors are proactively targeting macOS businesses by posi...

6.7AI score
Exploits0
The Hacker News
The Hacker News
added 2023/09/04 5:30 a.m.26 views

Chinese-Speaking Cybercriminals Launch Large-Scale iMessage Smishing Campaign in U.S.

A new large-scale smishing campaign is targeting the U.S. by sending iMessages from compromised Apple iCloud accounts with an aim to conduct identity theft and financial fraud. "The Chinese-speaking threat actors behind this campaign are operating a package-tracking text scam sent via iMessage to...

8.1AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2023/05/15 12:0 a.m.37 views

Oracle Linux 9 : webkit2gtk3 (ELSA-2023-2256)

The remote Oracle Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2023-2256 advisory. 2.38.5-1 - Update to 2.38.5 Related: 2127467 2.38.4-1 - Update to 2.38.4 Related: 2127467 2.38.3-1 - Update to 2.38.3 Related: 2127467 2.38.2-1 - Updat...

8.8CVSS7.1AI score0.34574EPSS
Exploits2References23
OSV
OSV
added 2023/05/08 8:15 p.m.2 views

CVE-2023-23526

This was addressed with additional checks by Gatekeeper on files downloaded from an iCloud shared-by-me folder. This issue is fixed in macOS Ventura 13.3, iOS 16.4 and iPadOS 16.4. A file from an iCloud shared-by-me folder may be able to bypass Gatekeeper...

9.8CVSS7.1AI score
Exploits0References2
Prion
Prion
added 2023/05/08 8:15 p.m.16 views

Design/Logic Flaw

This was addressed with additional checks by Gatekeeper on files downloaded from an iCloud shared-by-me folder. This issue is fixed in macOS Ventura 13.3, iOS 16.4 and iPadOS 16.4. A file from an iCloud shared-by-me folder may be able to bypass Gatekeeper...

7.5CVSS7.8AI score0.00726EPSS
Exploits0References2Affected Software3
Vulnrichment
Vulnrichment
added 2023/05/08 12:0 a.m.6 views

CVE-2023-23526

This was addressed with additional checks by Gatekeeper on files downloaded from an iCloud shared-by-me folder. This issue is fixed in macOS Ventura 13.3, iOS 16.4 and iPadOS 16.4. A file from an iCloud shared-by-me folder may be able to bypass Gatekeeper...

8.1AI score0.00726EPSS
Exploits0References2
Cvelist
Cvelist
added 2023/05/08 12:0 a.m.25 views

CVE-2023-23526

This was addressed with additional checks by Gatekeeper on files downloaded from an iCloud shared-by-me folder. This issue is fixed in macOS Ventura 13.3, iOS 16.4 and iPadOS 16.4. A file from an iCloud shared-by-me folder may be able to bypass Gatekeeper...

8.3AI score0.00726EPSS
Exploits0References2
CVE
CVE
added 2023/05/08 12:0 a.m.100 views

CVE-2023-23526

CVE-2023-23526 involves Gatekeeper bypass via a file downloaded from an iCloud Shared by Me folder. The issue arises from insufficient checks in Gatekeeper, allowing a file from that folder to bypass the gatekeeping checks. Apple fixed this by addressing the vulnerability with additional checks, ...

9.8CVSS7.7AI score0.00726EPSS
Exploits0References2Affected Software3
The Hacker News
The Hacker News
added 2023/04/12 11:58 a.m.53 views

Israel-based Spyware Firm QuaDream Targets High-Risk iPhones with Zero-Click Exploit

Threat actors using hacking tools from an Israeli surveillanceware vendor named QuaDream targeted at least five members of civil society in North America, Central Asia, Southeast Asia, Europe, and the Middle East. According to findings from a group of researchers from the Citizen Lab, the spyware...

7.2AI score
Exploits0
The Hacker News
The Hacker News
added 2023/04/12 11:58 a.m.2 views

Israel-based Spyware Firm QuaDream Targets High-Risk iPhones with Zero-Click Exploit

Threat actors using hacking tools from an Israeli surveillanceware vendor named QuaDream targeted at least five members of civil society in North America, Central Asia, Southeast Asia, Europe, and the Middle East. According to findings from a group of researchers from the Citizen Lab, the spyware...

7AI score
Exploits0
The Hacker News
The Hacker News
added 2023/03/27 10:38 a.m.33 views

New MacStealer macOS Malware Steals iCloud Keychain Data and Passwords

A new information-stealing malware has set its sights on Apple's macOS operating system to siphon sensitive information from compromised devices. Dubbed MacStealer, it's the latest example of a threat that uses Telegram as a command-and-control C2 platform to exfiltrate data. It primarily affects...

6.3AI score
Exploits0
The Hacker News
The Hacker News
added 2023/03/27 10:38 a.m.5 views

New MacStealer macOS Malware Steals iCloud Keychain Data and Passwords

A new information-stealing malware has set its sights on Apple's macOS operating system to siphon sensitive information from compromised devices. Dubbed MacStealer , it's the latest example of a threat that uses Telegram as a command-and-control C2 platform to exfiltrate data. It primarily affect...

6.4AI score
Exploits0
CNNVD
CNNVD
added 2023/03/27 12:0 a.m.5 views

Apple iOS 和 iPadOS 安全漏洞

Apple iOS and Apple iPadOS are products of Apple Inc. Apple iOS is an operating system developed for mobile devices, and Apple iPadOS is an operating system for iPad tablets. A security vulnerability exists in Apple iOS and iPadOS, which originates from a file from the iCloud Shared by Me folder...

9.8CVSS7.5AI score0.00726EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2023/03/27 12:0 a.m.3 views

PT-2023-19011 · Apple · Icloud +5

Name of the Vulnerable Software and Affected Versions: macOS Ventura versions prior to 13.3 iOS versions prior to 16.4 iPadOS versions prior to 16.4 Description: The issue allows a file from an iCloud shared-by-me folder to bypass Gatekeeper. This was addressed with additional checks by Gatekeepe...

9.8CVSS7AI score0.00726EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2023/03/27 12:0 a.m.107 views

macOS 13.x < 13.3 Multiple Vulnerabilities (HT213670)

The remote host is running a version of macOS / Mac OS X that is 13.x prior to 13.3. It is, therefore, affected by multiple vulnerabilities: - Use-after-free vulnerability in the SVG implementation in Blink, as used in Google Chrome before 35.0.1916.114, allows remote attackers to cause a denial ...

9.8CVSS8.3AI score0.22951EPSS
Exploits10References96
SUSE CVE
SUSE CVE
added 2023/02/15 5:2 a.m.3 views

SUSE CVE-2016-4613

An issue was discovered in certain Apple products. Safari before 10.0.1 is affected. iCloud before 6.0.1 is affected. iTunes before 12.5.2 is affected. tvOS before 10.0.1 is affected. The issue involves the "WebKit" component. It allows remote attackers to obtain sensitive information via a craft...

6.5CVSS8.3AI score0.01115EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2023/02/15 4:57 a.m.3 views

SUSE CVE-2016-7586

An issue was discovered in certain Apple products. iOS before 10.2 is affected. Safari before 10.0.2 is affected. iCloud before 6.1 is affected. iTunes before 12.5.4 is affected. The issue involves the "WebKit" component. It allows remote attackers to obtain sensitive information via a crafted we...

6.5CVSS8AI score0.01712EPSS
Exploits0References7
SUSE CVE
SUSE CVE
added 2023/02/15 4:57 a.m.4 views

SUSE CVE-2016-7598

An issue was discovered in certain Apple products. iOS before 10.2 is affected. Safari before 10.0.2 is affected. iCloud before 6.1 is affected. iTunes before 12.5.4 is affected. The issue involves the "WebKit" component. It allows remote attackers to obtain sensitive information from process...

6.5CVSS8AI score0.01705EPSS
Exploits0References5
SUSE CVE
SUSE CVE
added 2023/02/15 4:57 a.m.4 views

SUSE CVE-2016-7639

An issue was discovered in certain Apple products. iOS before 10.2 is affected. Safari before 10.0.2 is affected. iCloud before 6.1 is affected. iTunes before 12.5.4 is affected. The issue involves the "WebKit" component. It allows remote attackers to execute arbitrary code or cause a denial of...

8.8CVSS9.1AI score0.01842EPSS
Exploits0References7
SUSE CVE
SUSE CVE
added 2023/02/15 4:57 a.m.1 views

SUSE CVE-2016-7640

An issue was discovered in certain Apple products. iOS before 10.2 is affected. Safari before 10.0.2 is affected. iCloud before 6.1 is affected. iTunes before 12.5.4 is affected. The issue involves the "WebKit" component. It allows remote attackers to execute arbitrary code or cause a denial of...

8.8CVSS9.2AI score0.01834EPSS
Exploits0References3
Rows per page
Query Builder