Fake Claude search results lure Mac users into ClickFix attack

Researchers found that cybercriminals are using sponsored search results and shared Claude chats to lure victims into a typical ClickFix attack to install malware on macOS devices. ClickFix is a social engineering method that tricks users into infecting their own device with malware. Users are...

Apple多款产品 安全漏洞

Apple iOS is an operating system developed for mobile devices.Apple macOS is a specialized operating system developed for Mac computers.Apple iPadOS is an operating system for iPad tablets. A denial of service vulnerability exists in multiple Apple products due to an error in the WebKit component...

Apple macOS 安全漏洞

Apple macOS is a specialized operating system developed by Apple for Mac computers. Apple macOS has a security vulnerability that can be exploited by an attacker to gain root access...

Macs targeted by infostealers in new era of cyberthreats

The latest, major threats to Mac computers can steal passwords and credit card details with delicate precision, targeting victims across the internet based on their device, location, and operating system. These are the dangers of “infostealers,” which have long plagued Windows devices but, in the...

CVE-2025-24122

A downgrade issue affecting Intel-based Mac computers was addressed with additional code-signing restrictions. This issue is fixed in macOS Sequoia 15.3, macOS Sonoma 14.7.3, macOS Ventura 13.7.3. An app may be able to modify protected parts of the file system...

CVE-2024-44280

A downgrade issue affecting Intel-based Mac computers was addressed with additional code-signing restrictions. This issue is fixed in macOS Sequoia 15.1, macOS Sonoma 14.7.1, macOS Ventura 13.7.1. An app may be able to modify protected parts of the file system...

Apple macOS Security Breach

Apple macOS is a dedicated operating system developed by Apple Inc. for Mac computers. A security vulnerability exists in Apple macOS Sonoma version 14, which stems from an application that may be able to access calendar data saved to a temporary directory...

Apple releases emergency update: Patch, but don’t panic

Spyware developed by the company NSO Group is back in the news today after Apple released an emergency fix for iPhones, iPads, Macs, and Apple Watches. The update fixes a vulnerability silently exploited by software called Pegasus, which is often used in high-level surveillance campaigns by...

CVE-2021-31322

Telegram Android 7.1.0 2090, Telegram iOS 7.1, and Telegram macOS 7.1 are affected by a Heap Buffer Overflow in the LOTGradient::populate function of their custom fork of the rlottie library. A remote attacker might be able to access heap memory out-of-bounds on a victim device via a malicious...

Parallels Desktop Tools Integer Overflow Elevation of Privilege Vulnerability (CNVD-2021-34187)

Parallels Desktop is a virtual machine software that runs on Mac computers. A security vulnerability exists in the Parallels Tools component of Parallels Desktop version 16.1.2-49151. The vulnerability stems from a lack of proper validation of user-supplied data. An attacker can exploit the...

Parallels Desktop IDE Heap Buffer Overflow Elevation of Privilege Vulnerability

Parallels Desktop is a virtual machine software that runs on Mac computers. A security vulnerability exists in the IDE virtual appliance in Parallels Desktop version 15.1.5-47309. The vulnerability stems from not properly validating the length of user-supplied data before copying it to a...

Parallels Desktop Elevation of Privilege Vulnerability

Parallels Desktop is a virtual machine software that runs on Mac computers. An elevation of privilege vulnerability exists in the e1000e virtual appliance in Parallels Desktop version 16.1.1-49141. The vulnerability stems from a lack of proper locking when performing operations on objects. An...

Parallels Desktop Toolgate Directory Traversal Elevation of Privilege Vulnerability

Parallels Desktop is a virtual machine software that runs on Mac computers. A security vulnerability exists in the Toolgate component in Parallels Desktop version 16.1.1-49141. The vulnerability stems from a failure to properly validate a user-supplied path before using it in a file operation. An...

Corel Parallels Desktop 缓冲区错误漏洞

Parallels Desktop is a virtual machine software that runs on Mac computers. A security vulnerability exists in the Toolgate component in Parallels Desktop version 15.1.5-47309. The vulnerability stems from failure to properly initialize memory before accessing it. A local attacker could exploit t...

Parallels Desktop Out-of-Bounds Read Information Disclosure Vulnerability (CNVD-2020-46856)

Parallels Desktop is a virtual machine software that runs on Mac computers. An out-of-bounds read information disclosure vulnerability exists in the OEMNet component in versions prior to Parallels Desktop 16.0.0 48916. The vulnerability stems from a lack of proper validation of user-supplied data...

Apple Bans Cryptocurrency Mining Apps From Its App Stores

Due to the surge in cryptocurrency prices, not only hackers but also legitimate websites and mobile apps are increasingly using cryptocurrency miners to monetize by levying the CPU power of your PC and phones to mine cryptocurrencies. However, Apple wants to protect your Mac and iPhone battery fr...

Apple iOS/Mac Information Disclosure Vulnerability

iOS is an operating system developed by Apple for mobile devices, and supported devices include iPhone, iPod touch, iPad, and Apple TV. Information leakage vulnerability exists in several Apple products, which can be exploited by attackers to obtain sensitive information...

Apple Mac computer firmware 0day EFI rootkit vulnerability

MAC is apple's self-developed operating system, now commonly used operating systems are windows, linux, mac. MacBook Pro Retina, MacBook Pro and MacBook Air computers may have a security vulnerability in the EFI firmware update, the attacker does not need to physically touch the target machine, c...

Global 6 0 0 0 million Mac computers still affected by Rootpipe vulnerability, Backdoor impact-vulnerability warning-the black bar safety net

Mulberry heart, but it's true: even the latest Mac OS X Yosemite system Apple Mac computers will still be hidden Backdoor“Rootpipe”attack. As the“2 0 1 4 year of the vulnerability up to theoperating system”, the Mac OS X system and then exposed the vulnerability can not help but make people...

CVE-2 0 1 5-0 2 0 4 OpenSSL FREAK Attack vulnerability detection methods and repair recommendations-vulnerability warning-the black bar safety net

0×0 1 Introduction Near the Lantern Festival on the occasion, OpenSSL and because of the FREAK attack（also known as the Factoring Attack on RSA-EXPORT Keys vulnerability or CVE-2 0 1 5-0 2 0 4. the vulnerability fights uproar. Apple and Google are in on Tuesday indicated that they are fixing the...