How to steal money via Apple Pay using the “Express Transit” feature
September 30 2021Could a rogue vendor with a dodgy payment terminal rip you off via Apple Pay? Maybe. Here's what to do about it.
Read moreLatest episode - listen now!
Read moreSTILL ALIVE! iOS 12 gets 3 zero-day security patches – update now
September 23 2021It wasn't dead, just resting.
Read moreiOS 15 launches with 22 documented security patches – including a Face ID bypass using a “3D model”
September 21 2021Fake heads! (Cue dystopian scifi music.)
Read moreZero-Click iMessage Exploit
September 17 2021Citizen Lab released a report on a zero-click iMessage exploit that is used in NSO Group’s Pegasus spyware. Apple patched the vulnerability; everyone needs to update their OS immediately. News articles...
Read moreS3 Ep50: Two 0-days plus another 0-day plus a fast food bug [Podcast]
September 15 2021Bugs! So many bugs! Latest episode - listen now...
Read moreMicrosoft Patch Tuesday, September 2021 Edition
September 14 2021Microsoft today pushed software updates to plug dozens of security holes in Windows and related products, including a vulnerability that is already being exploited in active attacks. Also, Apple...
Read moreApple products vulnerable to FORCEDENTRY zero-day attack – patch now!
September 14 2021Double trouble: two zero-days, patched in the same emergency update. So please don't delay - patch today!
Read moreLightning Cable with Embedded Eavesdropping
September 7 2021Normal-looking cables (USB-C, Lightning, and so on) that exfiltrate data over a wireless network. I blogged about a previous prototype here.
Read moreZero-Click iPhone Exploits
September 1 2021Citizen Lab is reporting on two zero-click iMessage exploits, in spyware sold by the cyberweapons arms manufacturer NSO Group to the Bahraini government. These are particularly scary exploits, since they...
Read more
Recent Comments