Citizen Lab reports that the new Pegasus spyware zero-click zero-day impacts the most recent version of iOS (16.6) and likely prior versions dating back to the iPhone 8. As with the prior Pegasus attack vector, victims only need to receive a iMessage to be compromised; they do not need to open the message or interact with it.
Apple developers that want to use certain APIs will have to submit an explanation of why they are necessary for program function, as part of a new effort to combat user fingerprinting.
In opposition to the proposed UK Online Safety Bill, Apple has issued a statement referring to encrypted messaging as being critical to privacy and online safety.
Cybersecurity firm Kaspersky Lab has discovered an iOS malware variant spreading via an iPhone zero-click exploit in iMessage. Russia has accused the NSA of targeting the country’s diplomatic missions and Apple of providing backdoors.
Fortune 500 companies continue to demonstrate extreme wariness of AI chatbots and similar AI tools in the workplace, as Apple has banned employees from using ChatGPT on work devices.
App developers have in the past criticized Apple for not applying its series of new privacy rules to itself in an even manner. The company now faces an antitrust probe in Italy saying that the system was unfair to third party developers.
privacy lawsuit claims to have tested what Apple apps "phone home" with and found that it seemingly makes no difference what the user chooses in terms of analytics data permissions.
CNIL has hit Apple's App Store with a fine of €8 million over its ad personalization practices, taking it to task for not properly collecting consent and making the process of opting out too indirect.
The rapporteur for France's lead data protection agency (CNIL) is recommending a six million euro fine for Apple’s breach of the EU’s ePrivacy directive due to privacy violations. Apple had granted exceptions to the ATT framework for a variety of its own pre-installed apps.
One of the few significant holes in Apple's end user security is set to be addressed, as Cupertino has announced plans to introduce end-to-end encryption to iCloud backups. A feature Apple has delayed due primarily to pressure from US federal law enforcement agencies.