tldrdaily.news logo
Tag

Webkit

All articles tagged with #webkit

Apple Alerts 800 Million iPhone Users to Critical WebKit Flaw
technology1 month ago

Apple Alerts 800 Million iPhone Users to Critical WebKit Flaw

Apple warns of two critical WebKit flaws that could let hackers take control of iPhones or iPads via malicious websites. A patch is available in iOS 26.2 / iPadOS 26.2, but with roughly 800 million devices still unpatched, many users remain at risk. The most vulnerable models include iPhone 11 and newer and various iPad generations. The recommended defense is updating to the latest software (automatic updates should already protect most users; otherwise, manually install iOS 26.2).

via Yahoo|
#apple#ios-262#iphone
Japan's New Law Challenges Apple's Browser Restrictions on iPhone
technology7 months ago

Japan's New Law Challenges Apple's Browser Restrictions on iPhone

Japan's Mobile Software Competition Act will require Apple to allow non-WebKit browsers on the iPhone, promoting competition and enabling browsers like Chrome and Firefox to use alternative engines. The law takes effect in December and builds on recent EU regulations, with similar expectations in the UK. Apple has already made some changes in the EU, but Japan's law aims to ensure a more open environment for web browsers on iOS.

via MacRumors|
#apple#browser-engines#iphone
The Search for WebKit-Free iPhone Browsers
technology7 months ago

The Search for WebKit-Free iPhone Browsers

Despite a 16-month-old EU ruling allowing iOS developers to use alternative browser engines, Apple continues to impose restrictions that hinder competition, according to the Open Web Advocacy group. These restrictions include legal and technical barriers that force developers to create separate apps for different regions, limiting user base growth and competition with Safari, which significantly contributes to Apple's revenue. Although support for non-WebKit browsers was added in iOS 17.4, critics argue that Apple's restrictions still prevent fair competition, with ongoing regulatory pressure in the UK.

via The Verge|
#apple#browser-engines#eu-regulations
Urgent iOS and macOS Updates Released to Patch Zero-Day Vulnerabilities
technology1 year ago

Urgent iOS and macOS Updates Released to Patch Zero-Day Vulnerabilities

Apple has released iOS 18.1.1, urging users to download it immediately due to critical security patches. The update addresses vulnerabilities in JavaScriptCore and WebKit, which could allow arbitrary code execution and cross-site scripting attacks, respectively. These issues were identified by Google's Threat Analysis Group, highlighting the importance of updating to protect against potential exploits.

via CNET|
#apple#ios-1811#javascriptcore
Apple Urges Immediate Updates for Mac Zero-Day Vulnerabilities
technology1 year ago

Apple Urges Immediate Updates for Mac Zero-Day Vulnerabilities

Apple has released security updates to address two zero-day vulnerabilities actively exploited in cyberattacks targeting Mac users. These vulnerabilities, found in WebKit and JavaScriptCore, could allow attackers to execute arbitrary code by tricking devices into processing malicious web content. The attacks, reported by Google's Threat Analysis Group, suggest possible involvement of government-backed actors. Apple urges users to update their devices immediately to protect against potential exploitation.

via TechCrunch|
#apple#cybersecurity#mac
Mozilla Calls Out Apple, Google, and Microsoft for Unfair Browser Practices
technology2 years ago

Mozilla Calls Out Apple, Google, and Microsoft for Unfair Browser Practices

Mozilla expresses disappointment with Apple's new rules in the EU, which allow browsers like Firefox to use their own engines on iOS but only in the EU, making it challenging for browsers to manage different versions. The change means third-party browsers could become fully functional on iOS without WebKit limitations, but Mozilla argues that Apple's proposals create barriers to true browser competition on iOS. Other developers, including Epic and Spotify, have also criticized the new rules, which are pending approval by the EU Commission.

via The Verge|
#apple#browserenginekit#ios
"Apple Issues Critical iOS 17.3 Update with Anti-Theft Feature and Zero-Day Vulnerability Patch"
technology2 years ago

"Apple Issues Critical iOS 17.3 Update with Anti-Theft Feature and Zero-Day Vulnerability Patch"

Apple has released iOS 17.3, urging all iPhone users to update immediately due to the fix of 16 security issues, including a vulnerability in WebKit already being exploited in real life attacks. The update also includes Stolen Device Protection and is crucial for older devices, as Apple no longer supports them with security updates. Additionally, iOS 16.7.5 and iOS 15.8.1 updates have been issued for older iPhone models, fixing multiple security issues, some of which are already being exploited. It is recommended for all iPhone users to update their devices to the latest software immediately.

via Forbes|
#apple#ios-173#iphone
"Apple's Swift Response: Patching Zero-Day Exploits in iOS 17.3 and macOS Sonoma 14.3"
technology2 years ago

"Apple's Swift Response: Patching Zero-Day Exploits in iOS 17.3 and macOS Sonoma 14.3"

Apple has released security updates to fix the first zero-day vulnerability exploited in attacks this year, impacting iPhones, Macs, and Apple TVs. Tracked as CVE-2024-23222, the WebKit confusion issue could allow attackers to execute arbitrary malicious code on vulnerable devices through a malicious web page. While the company is aware of in-the-wild exploitation, it has yet to attribute the discovery to a specific researcher. Users are advised to install the latest security updates to protect against potential attack attempts, with a comprehensive list of impacted devices provided.

via BleepingComputer|
#apple#exploitation#security
"Apple's iOS 17.2 Update: Security Patches, Journal App, and 3D Video Shooting"
technology2 years ago

"Apple's iOS 17.2 Update: Security Patches, Journal App, and 3D Video Shooting"

Apple has released security updates for iOS, iPadOS, macOS, tvOS, watchOS, and Safari to address multiple security flaws, including two recently disclosed zero-days. The updates patch vulnerabilities in various components such as Bluetooth, AVEVideoEncoder, ExtensionKit, Find My, ImageIO, Kernel, Safari Private Browsing, and WebKit. Notable fixes include a critical Bluetooth vulnerability that could allow keystroke injection and two WebKit flaws that could lead to arbitrary code execution and a denial-of-service condition. The updates also include additional security enhancements, such as Siri bug fixes and Contact Key Verification for iMessage conversations. Apple has also released updates to address security issues in tvOS and watchOS, including two WebKit vulnerabilities actively exploited in the wild.

via The Hacker News|
#apple#ios#macos
Apple's Emergency Updates Patch Critical Security Flaws on Older iPhones
technology2 years ago

Apple's Emergency Updates Patch Critical Security Flaws on Older iPhones

Apple has released emergency security updates to address two zero-day vulnerabilities found in the WebKit browser engine, which is used by Safari across Apple's platforms. These flaws could allow attackers to access sensitive data and execute arbitrary code on unpatched devices. The updates cover older iPhones, Apple Watch, and Apple TV models. The vulnerabilities were discovered by a security researcher from Google's Threat Analysis Group (TAG), and while Apple has not provided details on their exploitation, Google TAG has previously identified zero-day flaws used in state-sponsored surveillance attacks. This marks the 20th zero-day vulnerability patched by Apple this year.

via BleepingComputer|
#apple#exploitation#security-updates
Apple Issues Urgent iOS Security Update for All iPhone Users
technology2 years ago

Apple Issues Urgent iOS Security Update for All iPhone Users

Apple has released an urgent software update, iOS 17.1.2, to patch two security exploits discovered in the previous release. The update addresses vulnerabilities in Apple's web browser engine, WebKit, which could potentially disclose sensitive information and lead to arbitrary code execution. Users are urged to download the update promptly. Additionally, law enforcement agencies are warning iPhone users about a feature called NameDrop, which allows easy sharing of contact information and photos but is defaulted to 'ON', potentially leading to unintended sharing of personal information.

via FOX 10 News Phoenix|
#apple#ios-update#namedrop
"Apple's Urgent iOS Update Addresses Critical Security Exploits"
technology2 years ago

"Apple's Urgent iOS Update Addresses Critical Security Exploits"

Apple has released an urgent iOS update, version 17.1.2, to address two security exploits in its web browser engine, WebKit. The update does not include any new features and is recommended for all users. Law enforcement agencies are also warning iPhone users about a feature called NameDrop, which allows easy sharing of contact information and photos but is defaulted to 'ON', potentially leading to unintended sharing of personal information.

via Yahoo Finance|
#apple#ios-update#namedrop
"Apple Urges Immediate iOS Update to Address Critical Security Vulnerabilities"
technology2 years ago

"Apple Urges Immediate iOS Update to Address Critical Security Vulnerabilities"

Apple has released an urgent iOS update, version 17.1.2, to address security exploits found in the WebKit web browser engine. The update aims to patch two vulnerabilities that were documented in the previous iOS 17.1.1 release. Users are advised to download the update promptly as it provides important security fixes. Additionally, law enforcement agencies are warning iPhone users about a feature called NameDrop, introduced in iOS 17.1.1, which allows for easy sharing of contact information and photos but may inadvertently disclose personal information if not disabled.

via Fox Business|
#apple#ios-update#namedrop
Apple Releases Urgent Security Updates for iOS, iPadOS, and macOS, Patching Actively Exploited Zero-Days
technology2 years ago

Apple Releases Urgent Security Updates for iOS, iPadOS, and macOS, Patching Actively Exploited Zero-Days

Apple has released security updates for iOS, iPadOS, and macOS to address two zero-day vulnerabilities that are actively being exploited by hackers. The vulnerabilities, found in the WebKit browser engine, allow for remote code execution and the planting of malicious code on devices. Apple has urged users to update their devices to the latest software versions to protect against these exploits. The identity of the hackers and their motives remain unknown.

via TechCrunch|
#apple#exploited#security-updates
Apple Releases Urgent Updates to Patch 3 Critical Zero-Day Exploits
technology2 years ago

Apple Releases Urgent Updates to Patch 3 Critical Zero-Day Exploits

Apple has released emergency security updates to address three new zero-day vulnerabilities that were exploited in attacks targeting iPhone and Mac users. The vulnerabilities include two bugs in the WebKit browser engine and the Security framework, allowing attackers to bypass signature validation and execute arbitrary code. The third vulnerability was found in the Kernel Framework, enabling local attackers to escalate privileges. Apple has fixed these vulnerabilities in various operating systems and devices. The flaws were discovered and reported by researchers from Citizen Lab and Google's Threat Analysis Group. This brings the total number of zero-days fixed by Apple this year to 16.

via BleepingComputer|
#apple#exploits#security-updates