CSO Online

Attackers exploit Ivanti EPMM zero-days to seize control of MDM servers

Palo Alto Networks’ Unit 42 says two critical flaws are being actively abused to gain unauthenticated access, deploy persistent backdoors, and compromise entire enterprise mobile fleets even after ...
Ars Technica

Unpatchable bug in millions of iOS devices exploited, developer claims

Today, an iOS security researcher who earlier developed software to “jailbreak” older Apple iOS devices posted a new software tool that he claims uses a “permanent unpatchable bootrom exploit” that ...

This Find My exploit lets hackers track any Bluetooth device – here’s how you can stay safe

A new exploit can track any Bluetooth device using Apple’s Find My network The attack can be done remotely in just a few ...
Threat Post

Cisco Patches Critical Flaw After PoC Exploit Code Release

A critical path-traversal flaw (CVE-2020-27130) exists in Cisco Security Manager that lays bare sensitive information to remote, unauthenticated attackers. A day after proof-of-concept (PoC) exploit ...
The Verge

New ‘unpatchable’ iPhone exploit could allow permanent jailbreaking on hundreds of millions of devices

A newly announced iOS exploit could lead to a permanent, unblockable jailbreak on hundreds of millions of iPhones, according to researcher axi0mX who discovered it. Dubbed “checkm8,” the exploit is a ...
9to5google

Severe MediaTek exploit affects millions of Android devices, some may never be patched

Overall, Android is a pretty secure operating system, but bugs and exploits can form anywhere, and eventually they do. This week, a severe security exploit was revealed relating to MediaTek chipsets, ...
TechSpot

New iPhone bootROM exploit might lead to permanent jailbreak on hundreds of millions of devices

Uh oh Apple: Someone discovered an "unpatchable" exploit on iPhones that may allow them to be permanently jailbroken. The vulnerability is at the hardware level, so even updating iOS will not patch ...
9to5google

Dirty Pipe: What you need to know about the major exploit affecting Pixel 6 and Galaxy S22 devices [Updated]

The security world has been abuzz about a new Linux exploit called “Dirty Pipe,” which also affects Android 12 devices like Galaxy S22 and Pixel 6. Here’s everything you need to know about “Dirty Pipe ...
Android

'aCropalypse' exploit puts Pixel devices at a serious risk

According to TechRadar, a vulnerability called “aCropalypse” has targeted Pixel devices. Hopefully, Google patched the exploit with the recent March feature drop, but users that haven’t received the ...
Threat Post

MediaTek Bug Actively Exploited, Affects Millions of Android Devices

An exploit published by a developer is easy to use and has already been used to build malicious apps that gain root access on Android devices. Google has addressed a high-severity flaw in MediaTek’s ...
Hosted on MSN

Hackers exploit WhatsApp device-linking feature to hijack accounts

Hackers can hijack WhatsApp accounts without ever cracking passwords or encryption GhostPairing attacks exploit legitimate device-linking features to gain full account access Users are tricked by fake ...
Android

PSA: Samsung Device Owners of GS2, GS3, OG Note, Note 2 & Note 10.1 Beware of Serious Malware Exploit

Earlier we bought you news that there was a serious security flaw that could affect devices running one of Samsung’s Exynos 4210 or 4412 processors and that a lot of Samsung devices were at risk the ...