iPhone hackers have discovered Apple's most recent iOS update, 12.4, released in July, accidentally reopened a code-execution vulnerability that was previously patched – a vulnerability that can be abused to jail-break iThings. Pwn20wnd, the developer of the iPhone jail-breaking tool unc0ver, says the newest version of their …

RoundupHere is a quick roundup of the recent happenings in the world of computer security beyond what we've already reported. Also, look out this week for our Black Hat, DEF CON, and Bsides Las Vegas coverage: our vultures out in the Nevada desert will produce a string of articles from the hacking conferences. Amazon closes one open …

RoundupHere's a quick summary of what's been happening in the infosec world lately, beyond what we've already reported. Louisiana declares state of emergency over ransomware A massive ransomware infection spreading among Louisiana school districts has caused the governor to declare a state of emergency – a designation usually …

A Russian software developer, currently under American sanctions for its purported role in the Kremlin's interference with the 2016 US elections, is now selling spyware to governments. Researchers at security house Lookout today reported [PDF] that St Petersburg-based Special Technology Centre (STC) is developing and …

On Monday Apple released a fresh round of security fixes for a load of its operating systems and applications. The July patch batch addresses vulnerabilities in iOS, MacOS, Safari, watchOS, and tvOS, though many of the updates are for common components across each of the platforms, such as the WebKit browser engine. These …

A team of US academics have proposed a simple method to defeat the Bluetooth LE standard's anti-tracking measures. David Strobinski, David Li, and Johannes Becker at Boston University told The Register how they found that the MAC randomization system of Bluetooth LE, designed to thwart the tracking of devices, transmits …

Cisco has delivered a bundle of 17 security updates to address 18-CVE-listed vulnerabilities in its networking and communications gear. Switchzilla has classified 10 of the fixed bugs as high security issues, with exploits leading to everything from command and code execution to denial of service- a particularly serious …

RoundupAs June turns over to July, here are some additional bits of security news besides our regular infosec coverage. Trump officials mull: Why not just ban strong encryption? Haven't we done this before? The White House is said to be weighing a plan to force US tech giants, software and hardware makers, and other companies, to …

WWDCApple announced iPadOS at its WWDC event in San Jose, giving the tablet its own dedicated operating system for the first time. This is playing with words to some extent (it is iOS 13), but there is no denying the huge range of new features, with over 250 listed on Apple's preview page, some of which are key to making the iPad …

At its Worldwide Developer Conference on Monday, Tim Cook addressed the Apple faithful and promised a host of software updates and some very expensive hardware – so much so that the hapless presenter was booed when announcing a $999 monitor stand. On the software side, Apple met developer expectations by announcing iOS apps …

Malware can bypass protections in macOS Mojave, and potentially access user data as well as the webcam and mic – by exploiting a hole in Apple's legacy app support. Digita Security chief research officer Patrick Wardle explained during a presentation at the Objective By the Sea conference in Monte Carlo this week how malicious …

Cisco has issued a security patch for a flaw in some of its routers that can be exploited by miscreants to potentially rifle through telecommunications networks. Switchzilla says the vulnerable kit – the ASR 9000, a family of high-end gear aimed at carrier and telco edge deployments – can, in certain circumstances, be hijacked …

UpdatedJust as Cisco is looking to close up more than two-dozen security flaws in networking boxes, researchers are claiming a set of previously-issued patches are failing to work properly. Bug-hunters with German testing group RedTeam Pentesting GmbH said today that two fixes included in a recent update for the RV320 Gigabit WAN …

In addition to teasing the world with a glimpse of subscriptions services for newspapers and magazines, gaming, and video entertainment, Apple on Monday released iOS 12.2, which patches 51 security vulnerabilities. The fruit-themed company's fixes cover some serious flaws and should be applied as soon as possible. Apple fixed …

Apple has emitted a handful of software patches to address security vulnerabilities in iOS, macOS, and various peripherals. The round of updates includes a number of fixes for critical flaws in WebKit, FaceTime, and Mac and iThing kernels. FaceTime, WebKit, and Magellan fixes for iOS For iOS handhelds, the update is billed as …

Microsoft has formally set the end date for support of its all-but-forgotten Windows 10 Mobile platform. The Redmond code factory said today that, come December 10, it's curtains for the ill-fated smartphone venture. The retirement will end a four-year run for a Microsoft phone effort that never really got off the ground and …

A newly disclosed vulnerability in Skype for Android could be exploited by miscreants to bypass an Android phone's passcode screen to view photos, contacts, and even launch browser windows. Bug-hunter Florian Kunushevci today told The Register the security flaw, which has been reported to Microsoft, allows the person in …

An enterprising malware writer has been masquerading infected Android devices as Apple gear in order to make a few extra bucks. Researchers with SophosLabs say the Andr/Clickr-ad malware takes advantage of the demand for ads that reach iPhone owners, as advertisers believe Apple fanbois are more willing to splash their cash. …