Saturday, June 15, 2024

Apple Released Security Updates for Safari, iCloud, iOS ,macOS, watchOS, iTunes

Apple released security updates for many of their products including iOS, macOS, iCloud, iTunes along with fixes of some serious vulnerabilities.

Safari 11.1.1 released with fixes of some critical vulnerabilities that leads to the malicious website that may be able to cause a denial of service, address bar spoofing,  cookies being overwritten also it leads to attacker perform arbitrary code execution.

macOS High Sierra 10.13.5 released with a lot more security fixes for the vulnerabilities that exist in the  10.13.4 version.

Fixed vulnerabilities for macOS that leads to execute some of the dangerous attacks such as arbitrary code with kernel privileges, perform a denial of service attack, conduct impersonation attacks etc.

All these vulnerabilities are discovered in various Framework and applications such as Accessibility Framework, AMD, Bluetooth, FontParser,iBooks, Kernel.

Also, Apple Released patches for most recently discovered EFAIL Attacks that lead to Leaked Encrypted Emails in Plain Text. This issue was addressed with the improved isolation of MIME in Mail.

Windows WebKit based vulnerability patches released for iCloud for Windows 7.5, iTunes 12.7.5 for Windows.

All the Apple Watch models are Impacted by many of critical vulnerabilties such as gain elevated privileges that discovered by  Google Project Zero and other vulnerabilities were reported by various security researchers and firms.

Apple Released Security Updates

Name and information linkAvailable forRelease date
iCloud for Windows 7.5Windows 7 and later01 Jun 2018
Safari 11.1.1OS X El Capitan 10.11.6, macOS Sierra 10.12.6, and macOS High Sierra 10.13.401 Jun 2018
macOS High Sierra 10.13.5, Security Update 2018-003 Sierra, Security Update 2018-003 El CapitanOS X El Capitan 10.11.6, macOS Sierra 10.12.6, macOS High Sierra 10.13.401 Jun 2018
iOS 11.4iPhone 5s and later, iPad Air and later, and iPod touch 6th generation29 May 2018
watchOS 4.3.1All Apple Watch models29 May 2018
iTunes 12.7.5 for WindowsWindows 7 and later29 May 2018
tvOS 11.4Apple TV 4K and Apple TV (4th generation)29 May 2018

You can check the update process from following links and Apple advised user to update their product and maintain your Apple product’s security.

Also Read:

XMRig – New Cryptojacking Malware Attack on Apple Mac Devices

Penetration Testing Checklist with Android, windows, Apple & Blackberry Phones

Now Fix Available for Indian Telugu Character that Crashes Apple Devices

Website

Latest articles

Sleepy Pickle Exploit Let Attackers Exploit ML Models And Attack End-Users

Hackers are targeting, attacking, and exploiting ML models. They want to hack into these...

SolarWinds Serv-U Vulnerability Let Attackers Access sensitive files

SolarWinds released a security advisory for addressing a Directory Traversal vulnerability which allows a...

Smishing Triad Hackers Attacking Online Banking, E-Commerce AND Payment Systems Customers

Hackers often attack online banking platforms, e-commerce portals, and payment systems for illicit purposes.Resecurity...

Threat Actor Claiming Leak Of 5 Million Ecuador’s Citizen Database

A threat actor has claimed responsibility for leaking the personal data of 5 million...

Ascension Hack Caused By an Employee Who Downloaded a Malicious File

Ascension, a leading healthcare provider, has made significant strides in its investigation and recovery...

AWS Announced Malware Detection Tool For S3 Buckets

Amazon Web Services (AWS) has announced the general availability of Amazon GuardDuty Malware Protection...

Hackers Exploiting MS Office Editor Vulnerability to Deploy Keylogger

Researchers have identified a sophisticated cyberattack orchestrated by the notorious Kimsuky threat group.The...
Balaji
Balaji
BALAJI is an Ex-Security Researcher (Threat Research Labs) at Comodo Cybersecurity. Editor-in-Chief & Co-Founder - Cyber Security News & GBHackers On Security.

Free Webinar

API Vulnerability Scanning

71% of the internet traffic comes from APIs so APIs have become soft targets for hackers.Securing APIs is a simple workflow provided you find API specific vulnerabilities and protect them.In the upcoming webinar, join Vivek Gopalan, VP of Products at Indusface as he takes you through the fundamentals of API vulnerability scanning..
Key takeaways include:

  • Scan API endpoints for OWASP API Top 10 vulnerabilities
  • Perform API penetration testing for business logic vulnerabilities
  • Prioritize the most critical vulnerabilities with AcuRisQ
  • Workflow automation for this entire process

Related Articles