* . *
  • About
  • Advertise
  • Privacy & Policy
  • Contact
Tuesday, October 21, 2025
Earth-News
  • Home
  • Business
  • Entertainment
    Hetzel Design: blending architecture and entertainment – Blooloop

    Hetzel Design: Where Architecture and Entertainment Unite in Perfect Harmony

    Country music legend rushed to hospital year after heart surgery. Here’s what we know – PennLive.com

    Country Music Legend Rushed to Hospital One Year After Heart Surgery – What’s Happening Now?

    Strictly Come Dancing results: Chris Robshaw is eliminated while drag queen La Voix escapes dance-off – Yahoo

    Strictly Come Dancing results: Chris Robshaw is eliminated while drag queen La Voix escapes dance-off – Yahoo

    Placer County town of Loomis considers entertainment zone for downtown – CBS News

    Loomis Unveils Thrilling New Entertainment Zone to Revitalize Downtown

    CT Culture Corner: Robert Redford films to watch – CT Insider

    CT Culture Corner: Robert Redford films to watch – CT Insider

    Elmira’s New Entertainment Venue ‘Centertown Social’ Adding its Final Touches – WENY News

    Elmira’s New Entertainment Venue ‘Centertown Social’ Adding its Final Touches – WENY News

  • General
  • Health
  • News

    Cracking the Code: Why China’s Economic Challenges Aren’t Shaking Markets, Unlike America’s” – Bloomberg

    Trump’s Narrow Window to Spread the Truth About Harris

    Trump’s Narrow Window to Spread the Truth About Harris

    Israel-Gaza war live updates: Hamas leader Ismail Haniyeh assassinated in Iran, group says

    Israel-Gaza war live updates: Hamas leader Ismail Haniyeh assassinated in Iran, group says

    PAP Boss to Niger Delta Youths, Stay Away from the Protest

    PAP Boss to Niger Delta Youths, Stay Away from the Protest

    Court Restricts Protests In Lagos To Freedom, Peace Park

    Court Restricts Protests In Lagos To Freedom, Peace Park

    Fans React to Jazz Jennings’ Inspiring Weight Loss Journey

    Fans React to Jazz Jennings’ Inspiring Weight Loss Journey

    Trending Tags

    • Trump Inauguration
    • United Stated
    • White House
    • Market Stories
    • Election Results
  • Science
  • Sports
  • Technology
    3 E Network Technology Group Limited Closes $1.5 Million Convertible Promissory Note Offering – Quiver Quantitative

    3 E Network Technology Group Limited Closes $1.5 Million Convertible Promissory Note Offering – Quiver Quantitative

    3 Technology Stocks to Buy Now – Yahoo Finance

    3 Must-Buy Tech Stocks You Can’t Afford to Miss Right Now

    ‘New frontier’: Austin leaders start discussions on air taxi technology – KXAN Austin

    Austin Leaders Ignite Exciting Conversations on the Future of Air Taxi Technology

    How a Gemma model helped discover a new potential cancer therapy pathway – blog.google

    How a Gemma Model Revealed a Breakthrough Pathway for Cancer Treatment

    Italian Technology in Manufacturing: Supporting North American Industries and Keeping Production Local – Thomasnet

    How Italian Technology is Revolutionizing North American Manufacturing and Boosting Local Production

    Guide to Proteomics Project Planning: Sample Preparation Strategies – Technology Networks

    Guide to Proteomics Project Planning: Sample Preparation Strategies – Technology Networks

    Trending Tags

    • Nintendo Switch
    • CES 2017
    • Playstation 4 Pro
    • Mark Zuckerberg
No Result
View All Result
  • Home
  • Business
  • Entertainment
    Hetzel Design: blending architecture and entertainment – Blooloop

    Hetzel Design: Where Architecture and Entertainment Unite in Perfect Harmony

    Country music legend rushed to hospital year after heart surgery. Here’s what we know – PennLive.com

    Country Music Legend Rushed to Hospital One Year After Heart Surgery – What’s Happening Now?

    Strictly Come Dancing results: Chris Robshaw is eliminated while drag queen La Voix escapes dance-off – Yahoo

    Strictly Come Dancing results: Chris Robshaw is eliminated while drag queen La Voix escapes dance-off – Yahoo

    Placer County town of Loomis considers entertainment zone for downtown – CBS News

    Loomis Unveils Thrilling New Entertainment Zone to Revitalize Downtown

    CT Culture Corner: Robert Redford films to watch – CT Insider

    CT Culture Corner: Robert Redford films to watch – CT Insider

    Elmira’s New Entertainment Venue ‘Centertown Social’ Adding its Final Touches – WENY News

    Elmira’s New Entertainment Venue ‘Centertown Social’ Adding its Final Touches – WENY News

  • General
  • Health
  • News

    Cracking the Code: Why China’s Economic Challenges Aren’t Shaking Markets, Unlike America’s” – Bloomberg

    Trump’s Narrow Window to Spread the Truth About Harris

    Trump’s Narrow Window to Spread the Truth About Harris

    Israel-Gaza war live updates: Hamas leader Ismail Haniyeh assassinated in Iran, group says

    Israel-Gaza war live updates: Hamas leader Ismail Haniyeh assassinated in Iran, group says

    PAP Boss to Niger Delta Youths, Stay Away from the Protest

    PAP Boss to Niger Delta Youths, Stay Away from the Protest

    Court Restricts Protests In Lagos To Freedom, Peace Park

    Court Restricts Protests In Lagos To Freedom, Peace Park

    Fans React to Jazz Jennings’ Inspiring Weight Loss Journey

    Fans React to Jazz Jennings’ Inspiring Weight Loss Journey

    Trending Tags

    • Trump Inauguration
    • United Stated
    • White House
    • Market Stories
    • Election Results
  • Science
  • Sports
  • Technology
    3 E Network Technology Group Limited Closes $1.5 Million Convertible Promissory Note Offering – Quiver Quantitative

    3 E Network Technology Group Limited Closes $1.5 Million Convertible Promissory Note Offering – Quiver Quantitative

    3 Technology Stocks to Buy Now – Yahoo Finance

    3 Must-Buy Tech Stocks You Can’t Afford to Miss Right Now

    ‘New frontier’: Austin leaders start discussions on air taxi technology – KXAN Austin

    Austin Leaders Ignite Exciting Conversations on the Future of Air Taxi Technology

    How a Gemma model helped discover a new potential cancer therapy pathway – blog.google

    How a Gemma Model Revealed a Breakthrough Pathway for Cancer Treatment

    Italian Technology in Manufacturing: Supporting North American Industries and Keeping Production Local – Thomasnet

    How Italian Technology is Revolutionizing North American Manufacturing and Boosting Local Production

    Guide to Proteomics Project Planning: Sample Preparation Strategies – Technology Networks

    Guide to Proteomics Project Planning: Sample Preparation Strategies – Technology Networks

    Trending Tags

    • Nintendo Switch
    • CES 2017
    • Playstation 4 Pro
    • Mark Zuckerberg
No Result
View All Result
Earth-News
No Result
View All Result
Home Technology

Apple fixes three vulnerabilities found by spyware researchers

September 25, 2023
in Technology
Apple fixes three vulnerabilities found by spyware researchers
Share on FacebookShare on Twitter

Apple has patched three more vulnerabilities uncovered by spyware and surveillance researchers at The Citizen Lab

Alex Scroxton

By

Alex Scroxton,
Security Editor

Published: 25 Sep 2023 13:45

Apple has once again moved to lock down zero-day vulnerabilities uncovered by researchers specialising in commercial spyware and government surveillance, issuing a new patch for iPhone and Mac devices on Thursday 21 September.

The update covers CVE-2023-2023-41991, CVE-2023-41992 and CVE-2023-41993 in iOS, and CVE-2023-41991 and CVE-2023-41992 in macOS Ventura. Between them, these cover iPhone XS and later, iPad Pro 12.9 inch 2nd generation and later, iPad Pro 10.5-inch, iPad Pro 11-inch 1st generation and later, iPad Air 3rd generation and later, iPad 6th generation and later, iPad mini 5th generation and later.

The first vulnerability, CVE-2023-41991, is a certificate validation issue that grants a malicious app the ability to bypass signature validation. The second, CVE-2023-41992, is an elevation of privilege (EoP) vulnerability affecting the device kernel. The third, CVE-2023-41993, affects the WebKit browser engine and enables a threat actor to achieve arbitrary code execution if the user can be lured to a malicious website.

Apple gave little further detail on any of these issues beyond stating it was “aware of a report that this issue may have been actively exploited against versions of iOS before iOS 16.7”.

All three vulnerabilities are credited to Maggie Stone of the Google Threat Analysis Group (TAG) and Bill Marczak of The Citizen Lab at the University of Toronto’s Munk School.

This is the latest in a string of vulnerabilities in Apple devices disclosed by The Citizen Lab, a specialist research unit probing commercial spyware and government surveillance.

The involvement of The Citizen Lab in general suggests that the issue in question has been exploited by clients of commercial (also often referred to as mercenary) spyware makers, which tend to be government agencies spying on persons of interest.

In this case, The Citizen Lab has alleged that the vulnerabilities have been chained by the developer of the Predator spyware, which is produced by Cytrox, a North Macedonia based-developer that has been sanctioned by the US government and banned from Meta’s platforms. Cytrox has been linked to people closely associated with the disgraced spyware developer NSO Group, and former Israeli intelligence operatives.

In new intelligence published in the wake of Apple’s disclosure, The Citizen Lab said it found the exploit chain had been used to target Egyptian politician Ahmed Eltantawy after he declared his intention to run for President in upcoming elections.

The researchers said that Eltantawy was first targeted with Cytrox via links sent on SMS and WhatsApp. Then, in August and September of 2023, his Vodafone Egypt mobile connection was targeted via network injection when Eltantawy was automatically redirected to a site not using HTTPS encryption, where the malicious payload infected his device.

Even reckoning without their abuse by the private spyware sector, Klaus Schenk, senior vice-president of security and threat research at Verimatrix, said the impact of the vulnerabilities should make them highly concerning to any user regardless of their likelihood of being targeted for snooping.

“Privilege escalation, arbitrary code execution, and especially remote exploitable arbitrary code execution rank among the most dangerous issues for any computing system,” said Schenk. “It’s reassuring that Apple has not yet disclosed technical details of the attack vectors. Keeping that information private significantly reduces the risk of widespread exploits, since threat actors have less information to engineer effective attacks.

“For remote code execution to occur, a user would need to visit a website specifically crafted to leverage these vulnerabilities and distribute malicious code. With details undisclosed, the number of sites currently capable of mounting such an attack is likely very low.

“That said, Apple customers should immediately install these emergency security updates to protect themselves against potential targeted attacks. Timely patching is critical, as threat actors will eventually reverse engineer the fixes to understand the underlying flaws. By updating promptly, users ensure their devices cannot be compromised by attacks exploiting these particular zero-day vulnerabilities,” he said.

Users concerned about their own susceptibility to commercial spyware may wish to consider enabling Apple’s on-board Lockdown Mode, which is known to block this infection chain and others identified by The Citizen Lab.

Read more on Hackers and cybercrime prevention


Apple issues emergency patches for 3 zero-day bugs

AlexanderCulafi

By: Alexander Culafi


Google, Microsoft and Mozilla push browser updates to foil zero-day

AlexScroxton

By: Alex Scroxton


Browser companies patch critical zero-day vulnerability

ArielleWaldman

By: Arielle Waldman


Apple patches Blastpass exploit abused by spyware makers

AlexScroxton

By: Alex Scroxton

>>> Read full article>>>
Copyright for syndicated content belongs to the linked Source : Computer Weekly – https://www.computerweekly.com/news/366553194/Apple-fixes-three-vulnerabilities-found-by-spyware-researchers

Tags: Applefixestechnology
Previous Post

Insights from launching a developer-led bank

Next Post

San Sebastian: Culinary Zinema’s ‘Pachacútec, the Improbable School’ Unveils Trailer (EXCLUSIVE)

The lover’s guide to the 2025 World Series – The New York Times

Your Ultimate Lover’s Guide to the 2025 World Series

October 21, 2025
Rethinking Growth In A Broadening Economy – Seeking Alpha

Unlocking Success: New Insights for Thriving in a Booming Economy

October 21, 2025
Hetzel Design: blending architecture and entertainment – Blooloop

Hetzel Design: Where Architecture and Entertainment Unite in Perfect Harmony

October 21, 2025
Study suggests earlier start of hormone therapy optimizes long-term health outcomes – News-Medical

Starting Hormone Therapy Sooner May Boost Long-Term Health Benefits

October 21, 2025
Some States With Democratic Governors Are Posting Partisan Shutdown Messages on Official Websites – The New York Times

Some States with Democratic Governors Feature Partisan Shutdown Messages on Official Websites

October 21, 2025
Revisiting Pope Francis’ Call for ‘Ecological Conversion’ – Sojourners

Pope Francis’ Powerful Appeal for a Global Ecological Awakening

October 21, 2025
PJSB donates $50,000 for UACCM Nursing and Science Center – KVOM

PJSB donates $50,000 for UACCM Nursing and Science Center – KVOM

October 21, 2025
An update from Riane Eisler, author of “The Chalice and the Blade,” on achieving peace. – Psychology Today

An update from Riane Eisler, author of “The Chalice and the Blade,” on achieving peace. – Psychology Today

October 21, 2025
We live in a sailboat and travel the world full-time… but our lifestyle isn’t as glamorous as you’d think – Daily Mail

Living Full-Time on a Sailboat and Traveling the World: The Reality Behind the Glamour

October 21, 2025
3 E Network Technology Group Limited Closes $1.5 Million Convertible Promissory Note Offering – Quiver Quantitative

3 E Network Technology Group Limited Closes $1.5 Million Convertible Promissory Note Offering – Quiver Quantitative

October 21, 2025

Categories

Archives

October 2025
M T W T F S S
 12345
6789101112
13141516171819
20212223242526
2728293031  
« Sep    
Earth-News.info

The Earth News is an independent English-language daily published Website from all around the World News

Browse by Category

  • Business (20,132)
  • Ecology (878)
  • Economy (900)
  • Entertainment (21,771)
  • General (17,718)
  • Health (9,941)
  • Lifestyle (912)
  • News (22,149)
  • People (900)
  • Politics (910)
  • Science (16,110)
  • Sports (21,399)
  • Technology (15,879)
  • World (883)

Recent News

The lover’s guide to the 2025 World Series – The New York Times

Your Ultimate Lover’s Guide to the 2025 World Series

October 21, 2025
Rethinking Growth In A Broadening Economy – Seeking Alpha

Unlocking Success: New Insights for Thriving in a Booming Economy

October 21, 2025
  • About
  • Advertise
  • Privacy & Policy
  • Contact

© 2023 earth-news.info

No Result
View All Result

© 2023 earth-news.info

No Result
View All Result

© 2023 earth-news.info

Go to mobile version