WhatsApp has patched a vulnerability it its smartphone code that could have been exploited by miscreants to crash victims' chat app simply by placing a call. Google Project Zero whizkid and Tamagotchi whisperer Natalie Silvanovich discovered and reported the flaw, a memory heap overflow issue, directly to WhatsApp in August. …

Apple iPhones, iPads, and Mac computers that stray onto websites with malicious CSS code, while using Safari, can crash or fall over – due to a flaw in the web browser. The WebKit rendering engine vulnerability can be triggered by just a few lines of code in a cascading style sheet (CSS). On iOS devices, at least, it all …

Apple on Friday issued its 12th developer beta version of iOS 12, which should see general release in September, just days after the previous version began spamming beta testers and developers with errant update notifications. Greater control over intrusive notifications is one of the relatively few marquee features in iOS 12 …

Google's passive collection of personal data from Android and iOS has been monitored and measured in a significant academic study. The report confirms that Google is no respecter of the Chrome browser's "incognito mode" aka "porn mode", collecting Chrome data to add to your personal profile, as we pointed out earlier this year …

Apple has pulled the latest beta of its iOS platform software after less than 24 hours in the wild, and without explanation. This year’s release, iOS 12, is intended to be a performance update with Apple stating that it sought to improve performance on older, lower RAM devices like the iPhone 6. The platform release is …

Cisco has pushed out an update for its internetwork operating system (IOS) and IOS XE firmware in advance of a Usenix presentation on circumventing cryptographic key protocol. The networking behemoth is advising all customers running hardware that uses IOS and IOS XE to get the updates that address CVE-2018-0131, a security …

Apple's attempt to filter out text on its iPhones to appease the Chinese government would crash iOS – and now that bug, or feature, has been fixed. Infosec whizkid Patrick Wardle revealed today that CVE-2018-4290, a denial of service flaw in iOS 11.3 and earlier, was in fact a programming blunder Apple introduced when it …

Apple has released the latest version of its mobile operating system complete with its Fed-blocking option. The iOS 11.4.1 upgrade is small by Apple standards – coming in at around 200MB – but it represents a big headache for the FBI and other organizations that want to gain access to someone else's phone because it kills off …

Apple and Samsung appear to have once and for all settled their years-long smartphone patents squabble. The two sides mercifully signaled a truce this week in a filing to the US Northern District Court of Lucy Koh, the US district court judge unfortunate enough to have presided over the entire seven-year legal ordeal. " …

Apple has revised its App Store rules to place restrictions on cryptocurrency mining, storage and payment across apps it distributes. The rules change coincides with the company's introduction of beta versions of its forthcoming iOS, macOS, tvOS and watchOS releases at its annual developer conference. It also comes as Wells …

Analysis Are you excited about Apple's new AR emoji as we are? Or the push-to-talk feature for the Apple Watch? Just kidding, folks. Once a year, the world's biggest computer company gives us its annual dump of new platform stuff for developers. And while Apple likes to add a bit of froth, the signal-to-noise ratio at its Worldwide …

Roundup While we were busy chasing SpamCannibals, jailing Yahoo hackers, and blaming North Korea for everything else, there was some interesting security news going on. Let's have a look at some of the stories that didn't quite make Reg headlines. Boffins float a (sort of) fix for Spectre bug A group of researchers from TU Dresden in …

Telegram backer and self-proclaimed "global entrepreneur" Pavel Durov has blamed a lack of updates to his app on Apple "not siding with us" in the ongoing furore in Russia over the crypto-chat platform. In a post on his own Telegram channel today, Durov apologised for some features not working under just-released iOS 11.4. He …

Apple has issued a trio of updates to patch security vulnerabilities in Safari, macOS, and iOS. For iOS, the update to 11.3.1 addresses a total of four CVE-listed vulnerabilities, including one that is present in the debugging tool used across both iOS and the macOS. That vulnerability, CVE-2018-4206, was spotted in Crash …

RSA 2018 The iTunes Wi-Fi sync feature in Apple's iOS can be potentially abused by cops, snoops, and hackers to remotely extract information from, and control, iPhones and iPads. This is according to researchers at Symantec, who discovered that, once an iOS device trusts a physically connected computer, the device can, in certain …

Mobile device management (MDM) vendor Jamf is warning admins to hold off on installing the iOS 11.3 update on iPhones and iPads until it can fix a bug in its software that was causing devices to become unresponsive. The developer says that it is working on an update to Jamf Pro 10.3 that will fix a problem caused when the …

On Thursday Apple released iOS 11.3, a free update to its mobile operating system that, among other new features and fixes, attempts to ease iPhone battery management. Late last year, the fruit-themed device maker acknowledged that its iOS 11.2.1 update included a undisclosed mechanism for processor throttling. The processors …

A security researcher based in Germany has identified a flaw in the way Apple's iOS 11 handles QR codes in its Camera app. Last year, with the launch of iOS 11, Apple gave its Camera app the ability to automatically recognize QR codes. Over the weekend, Roman Mueller found that this feature has a bug that can be used to …