* . *
  • About
  • Advertise
  • Privacy & Policy
  • Contact
Tuesday, June 24, 2025
Earth-News
  • Home
  • Business
  • Entertainment
    Netflix unveils Dallas immersive venue for fans of hit shows like ‘Squid Game,’ ‘Stranger Things’ – Houston Chronicle

    Step Inside Netflix’s New Dallas Immersive Experience Featuring Hits Like ‘Squid Game’ and ‘Stranger Things

    ‘Puttin’ on the Ritz’: Civic Players bring ‘Young Frankenstein’ to life – Yahoo

    Civic Players Deliver a Hilarious and Unforgettable Performance of ‘Young Frankenstein

    ‘Wheel of Fortune’: Amputee Wins $60,000 After Breaking Incredible ‘Curse’ – Hastings Tribune

    Wheel of Fortune’ Amputee Breaks Incredible ‘Curse’ to Win $60,000!

    North Star Sports & Entertainment Network: Coming soon – KTTC News

    North Star Sports & Entertainment Network: Coming soon – KTTC News

    Safety concerns in Deep Ellum create apprehension as the entertainment district gains visitors – CBS News

    Safety Concerns Surge Amid Deep Ellum’s Booming Popularity and Growing Crowds

    Elisabeth Moss’ ‘Handmaid’s Tale’ Emmy chances, by the numbers – Yahoo

    Elisabeth Moss’ ‘Handmaid’s Tale’ Emmy chances, by the numbers – Yahoo

  • General
  • Health
  • News

    Cracking the Code: Why China’s Economic Challenges Aren’t Shaking Markets, Unlike America’s” – Bloomberg

    Trump’s Narrow Window to Spread the Truth About Harris

    Trump’s Narrow Window to Spread the Truth About Harris

    Israel-Gaza war live updates: Hamas leader Ismail Haniyeh assassinated in Iran, group says

    Israel-Gaza war live updates: Hamas leader Ismail Haniyeh assassinated in Iran, group says

    PAP Boss to Niger Delta Youths, Stay Away from the Protest

    PAP Boss to Niger Delta Youths, Stay Away from the Protest

    Court Restricts Protests In Lagos To Freedom, Peace Park

    Court Restricts Protests In Lagos To Freedom, Peace Park

    Fans React to Jazz Jennings’ Inspiring Weight Loss Journey

    Fans React to Jazz Jennings’ Inspiring Weight Loss Journey

    Trending Tags

    • Trump Inauguration
    • United Stated
    • White House
    • Market Stories
    • Election Results
  • Science
  • Sports
  • Technology
    China’s Military Introduces Mosquito-Sized Drones: A Game-Changing Surveillance Technology – Indian Defence Review

    China Unveils Mosquito-Sized Drones: Revolutionizing Surveillance Technology

    Marvell Technology Stock Rallies After AI Event Sparks Investor Optimism – Yahoo Finance

    Marvell Technology Stock Rallies After AI Event Sparks Investor Optimism – Yahoo Finance

    Promising Technology Stocks To Follow Today – June 22nd – MarketBeat

    Top Technology Stocks to Watch Today – June 22nd

    Technology Convergence Report 2025 – The World Economic Forum

    Technology Convergence Report 2025 – The World Economic Forum

    How AI can help make cities work better for residents – MIT Technology Review

    How AI can help make cities work better for residents – MIT Technology Review

    Tech Champions with Leo Bletnitsky of Healthy Technology Solutions – Buzz Media Group

    Meet Tech Champion Leo Bletnitsky of Healthy Technology Solutions

    Trending Tags

    • Nintendo Switch
    • CES 2017
    • Playstation 4 Pro
    • Mark Zuckerberg
No Result
View All Result
  • Home
  • Business
  • Entertainment
    Netflix unveils Dallas immersive venue for fans of hit shows like ‘Squid Game,’ ‘Stranger Things’ – Houston Chronicle

    Step Inside Netflix’s New Dallas Immersive Experience Featuring Hits Like ‘Squid Game’ and ‘Stranger Things

    ‘Puttin’ on the Ritz’: Civic Players bring ‘Young Frankenstein’ to life – Yahoo

    Civic Players Deliver a Hilarious and Unforgettable Performance of ‘Young Frankenstein

    ‘Wheel of Fortune’: Amputee Wins $60,000 After Breaking Incredible ‘Curse’ – Hastings Tribune

    Wheel of Fortune’ Amputee Breaks Incredible ‘Curse’ to Win $60,000!

    North Star Sports & Entertainment Network: Coming soon – KTTC News

    North Star Sports & Entertainment Network: Coming soon – KTTC News

    Safety concerns in Deep Ellum create apprehension as the entertainment district gains visitors – CBS News

    Safety Concerns Surge Amid Deep Ellum’s Booming Popularity and Growing Crowds

    Elisabeth Moss’ ‘Handmaid’s Tale’ Emmy chances, by the numbers – Yahoo

    Elisabeth Moss’ ‘Handmaid’s Tale’ Emmy chances, by the numbers – Yahoo

  • General
  • Health
  • News

    Cracking the Code: Why China’s Economic Challenges Aren’t Shaking Markets, Unlike America’s” – Bloomberg

    Trump’s Narrow Window to Spread the Truth About Harris

    Trump’s Narrow Window to Spread the Truth About Harris

    Israel-Gaza war live updates: Hamas leader Ismail Haniyeh assassinated in Iran, group says

    Israel-Gaza war live updates: Hamas leader Ismail Haniyeh assassinated in Iran, group says

    PAP Boss to Niger Delta Youths, Stay Away from the Protest

    PAP Boss to Niger Delta Youths, Stay Away from the Protest

    Court Restricts Protests In Lagos To Freedom, Peace Park

    Court Restricts Protests In Lagos To Freedom, Peace Park

    Fans React to Jazz Jennings’ Inspiring Weight Loss Journey

    Fans React to Jazz Jennings’ Inspiring Weight Loss Journey

    Trending Tags

    • Trump Inauguration
    • United Stated
    • White House
    • Market Stories
    • Election Results
  • Science
  • Sports
  • Technology
    China’s Military Introduces Mosquito-Sized Drones: A Game-Changing Surveillance Technology – Indian Defence Review

    China Unveils Mosquito-Sized Drones: Revolutionizing Surveillance Technology

    Marvell Technology Stock Rallies After AI Event Sparks Investor Optimism – Yahoo Finance

    Marvell Technology Stock Rallies After AI Event Sparks Investor Optimism – Yahoo Finance

    Promising Technology Stocks To Follow Today – June 22nd – MarketBeat

    Top Technology Stocks to Watch Today – June 22nd

    Technology Convergence Report 2025 – The World Economic Forum

    Technology Convergence Report 2025 – The World Economic Forum

    How AI can help make cities work better for residents – MIT Technology Review

    How AI can help make cities work better for residents – MIT Technology Review

    Tech Champions with Leo Bletnitsky of Healthy Technology Solutions – Buzz Media Group

    Meet Tech Champion Leo Bletnitsky of Healthy Technology Solutions

    Trending Tags

    • Nintendo Switch
    • CES 2017
    • Playstation 4 Pro
    • Mark Zuckerberg
No Result
View All Result
Earth-News
No Result
View All Result
Home Technology

Apple fixes three vulnerabilities found by spyware researchers

September 25, 2023
in Technology
Apple fixes three vulnerabilities found by spyware researchers
Share on FacebookShare on Twitter

Apple has patched three more vulnerabilities uncovered by spyware and surveillance researchers at The Citizen Lab

Alex Scroxton

By

Alex Scroxton,
Security Editor

Published: 25 Sep 2023 13:45

Apple has once again moved to lock down zero-day vulnerabilities uncovered by researchers specialising in commercial spyware and government surveillance, issuing a new patch for iPhone and Mac devices on Thursday 21 September.

The update covers CVE-2023-2023-41991, CVE-2023-41992 and CVE-2023-41993 in iOS, and CVE-2023-41991 and CVE-2023-41992 in macOS Ventura. Between them, these cover iPhone XS and later, iPad Pro 12.9 inch 2nd generation and later, iPad Pro 10.5-inch, iPad Pro 11-inch 1st generation and later, iPad Air 3rd generation and later, iPad 6th generation and later, iPad mini 5th generation and later.

The first vulnerability, CVE-2023-41991, is a certificate validation issue that grants a malicious app the ability to bypass signature validation. The second, CVE-2023-41992, is an elevation of privilege (EoP) vulnerability affecting the device kernel. The third, CVE-2023-41993, affects the WebKit browser engine and enables a threat actor to achieve arbitrary code execution if the user can be lured to a malicious website.

Apple gave little further detail on any of these issues beyond stating it was “aware of a report that this issue may have been actively exploited against versions of iOS before iOS 16.7”.

All three vulnerabilities are credited to Maggie Stone of the Google Threat Analysis Group (TAG) and Bill Marczak of The Citizen Lab at the University of Toronto’s Munk School.

This is the latest in a string of vulnerabilities in Apple devices disclosed by The Citizen Lab, a specialist research unit probing commercial spyware and government surveillance.

The involvement of The Citizen Lab in general suggests that the issue in question has been exploited by clients of commercial (also often referred to as mercenary) spyware makers, which tend to be government agencies spying on persons of interest.

In this case, The Citizen Lab has alleged that the vulnerabilities have been chained by the developer of the Predator spyware, which is produced by Cytrox, a North Macedonia based-developer that has been sanctioned by the US government and banned from Meta’s platforms. Cytrox has been linked to people closely associated with the disgraced spyware developer NSO Group, and former Israeli intelligence operatives.

In new intelligence published in the wake of Apple’s disclosure, The Citizen Lab said it found the exploit chain had been used to target Egyptian politician Ahmed Eltantawy after he declared his intention to run for President in upcoming elections.

The researchers said that Eltantawy was first targeted with Cytrox via links sent on SMS and WhatsApp. Then, in August and September of 2023, his Vodafone Egypt mobile connection was targeted via network injection when Eltantawy was automatically redirected to a site not using HTTPS encryption, where the malicious payload infected his device.

Even reckoning without their abuse by the private spyware sector, Klaus Schenk, senior vice-president of security and threat research at Verimatrix, said the impact of the vulnerabilities should make them highly concerning to any user regardless of their likelihood of being targeted for snooping.

“Privilege escalation, arbitrary code execution, and especially remote exploitable arbitrary code execution rank among the most dangerous issues for any computing system,” said Schenk. “It’s reassuring that Apple has not yet disclosed technical details of the attack vectors. Keeping that information private significantly reduces the risk of widespread exploits, since threat actors have less information to engineer effective attacks.

“For remote code execution to occur, a user would need to visit a website specifically crafted to leverage these vulnerabilities and distribute malicious code. With details undisclosed, the number of sites currently capable of mounting such an attack is likely very low.

“That said, Apple customers should immediately install these emergency security updates to protect themselves against potential targeted attacks. Timely patching is critical, as threat actors will eventually reverse engineer the fixes to understand the underlying flaws. By updating promptly, users ensure their devices cannot be compromised by attacks exploiting these particular zero-day vulnerabilities,” he said.

Users concerned about their own susceptibility to commercial spyware may wish to consider enabling Apple’s on-board Lockdown Mode, which is known to block this infection chain and others identified by The Citizen Lab.

Read more on Hackers and cybercrime prevention


Apple issues emergency patches for 3 zero-day bugs

AlexanderCulafi

By: Alexander Culafi


Google, Microsoft and Mozilla push browser updates to foil zero-day

AlexScroxton

By: Alex Scroxton


Browser companies patch critical zero-day vulnerability

ArielleWaldman

By: Arielle Waldman


Apple patches Blastpass exploit abused by spyware makers

AlexScroxton

By: Alex Scroxton

>>> Read full article>>>
Copyright for syndicated content belongs to the linked Source : Computer Weekly – https://www.computerweekly.com/news/366553194/Apple-fixes-three-vulnerabilities-found-by-spyware-researchers

Tags: Applefixestechnology
Previous Post

Insights from launching a developer-led bank

Next Post

San Sebastian: Culinary Zinema’s ‘Pachacútec, the Improbable School’ Unveils Trailer (EXCLUSIVE)

Iranian missile strikes Israel’s ‘crown jewel of science’ – AP News

Iranian Missile Strikes Target Israel’s ‘Crown Jewel of Science’ in Dramatic Attack

June 24, 2025
Drone footage reveals orcas using tools in a stunning first – CNN

Incredible Drone Footage Reveals Orcas Using Tools in the Wild for the First Time

June 24, 2025
Lifestyle Brand Life Time Takes 52K SF at PBC’s 10 Bryant Park – Commercial Observer

Lifestyle Brand Life Time Expands with New 52K SF Space at 10 Bryant Park

June 24, 2025
How to Watch Benfica vs Bayern München: Live Stream FIFA Club World Cup, TV Channel – Newsweek

How to Watch Benfica vs Bayern München Live: FIFA Club World Cup Streaming and TV Guide

June 24, 2025
Trump Policies Slam Brakes on NYC Economy – THE CITY – NYC News

How Trump’s Policies Put the Brakes on NYC’s Economic Growth

June 24, 2025
Main Line Health combines culinary creativity with healthy eating – 6abc Philadelphia

Main Line Health combines culinary creativity with healthy eating – 6abc Philadelphia

June 24, 2025
Sen. Murkowski on new memoir ‘Far From Home’ and adapting to Trump era politics – PBS

Sen. Murkowski on new memoir ‘Far From Home’ and adapting to Trump era politics – PBS

June 24, 2025
China’s Military Introduces Mosquito-Sized Drones: A Game-Changing Surveillance Technology – Indian Defence Review

China Unveils Mosquito-Sized Drones: Revolutionizing Surveillance Technology

June 24, 2025
CBS Sports, Pac-12 extend partnership with network becoming primary partner as league eyes expansion – CBS Sports

Pac-12 and CBS Sports Strengthen Partnership Ahead of Thrilling League Expansion

June 24, 2025
Clay Minerals From Mars’ Most Ancient Past? – NASA Science (.gov)

Unveiling Clay Minerals from Mars’ Most Ancient Past

June 24, 2025

Categories

Archives

June 2025
MTWTFSS
 1
2345678
9101112131415
16171819202122
23242526272829
30 
« May    
Earth-News.info

The Earth News is an independent English-language daily published Website from all around the World News

Browse by Category

  • Business (20,132)
  • Ecology (697)
  • Economy (715)
  • Entertainment (21,611)
  • General (15,543)
  • Health (9,754)
  • Lifestyle (720)
  • News (22,149)
  • People (717)
  • Politics (722)
  • Science (15,933)
  • Sports (21,211)
  • Technology (15,700)
  • World (695)

Recent News

Iranian missile strikes Israel’s ‘crown jewel of science’ – AP News

Iranian Missile Strikes Target Israel’s ‘Crown Jewel of Science’ in Dramatic Attack

June 24, 2025
Drone footage reveals orcas using tools in a stunning first – CNN

Incredible Drone Footage Reveals Orcas Using Tools in the Wild for the First Time

June 24, 2025
  • About
  • Advertise
  • Privacy & Policy
  • Contact

© 2023 earth-news.info

No Result
View All Result

© 2023 earth-news.info

No Result
View All Result

© 2023 earth-news.info

Go to mobile version