Apple recently notified iPhone owners around who were targeted by government-sponsored spyware attacks to help increase their security and privacy.
Security
iOS 18.4.1 fixes connection issue with wireless CarPlay
Wireless CarPlay in iOS 18.4 was causing an unknown percentage of drivers connection issues, but Apple's iOS 18.4.1 update fixes the problem.
Why and how to turn off Stolen Device Protection on iPhone
Learn how to disable the Stolen Device Protection feature on your iPhone to avoid the one-hour wait for Apple Account changes.
How to turn off all passcodes from iPad or iPhone for easy access
Learn how to remove all passwords and security checkpoints from your iPad or iPhone, making it easy to unlock and use as a simple tablet or phone.
Technical analysis by Verichains confirms sandbox escape use by certain banking apps to detect TrollStore, jailbreak apps
Just yesterday, we reported on one of TrollStore perma-signing utility developer Lars Fröder’s posts on Bluesky sharing that some banking apps available in Apple’s App Store as of this writing utilize a 0-day sandbox escape technique to find out if certain unfavorable apps or services are installed on the end user’s device.
Ian Beer publishes in-depth analysis of BLASTPASS zero-click iMessage exploit from 2023
In a surprise turn of events, Google Project Zero security researcher Ian Beer took to social media platform 𝕏 (formerly Twitter) this week to share an in-depth write-up on the 0-click NSO BLASTPASS iMessage exploit that had actively been exploited in the wild before being patched by Apple in iOS & iPadOS 16.6.1 on September 7th, 2023.
Are certain banking apps using a 0-day sandbox escape to detect TrollStore?
Apple devices utilize a security technique called sandboxing, which isolates apps’ processes into their own protected environments so they can’t access certain parts of the file system that the manufacturer deems sensitive. But it’s possible for apps to circumvent this security mechanism via what’s known as a sandbox escape.
How to protect your iPhone, iPad, and Mac from cyberattacks with Lockdown Mode
Learn how to activate Lockdown Mode on your iPhone, iPad, or Mac to enhance security and protect against advanced, targeted cyberattacks.
Apple patches a WebKit exploit with iOS 18.3.2, iPadOS 18.3.2, macOS Sequoia 15.3.2 and other updates
Apple has patched a WebKit vulnerability with the iOS 18.3.2, iPadOS 18.3.2, macOS Sequoia 15.3.2, tvOS 18.3.1 and visionOS 2.3.2 updates.
SettingsWiFiPassword lets jailbreakers on iOS 15 and earlier copy and share their current Wi-Fi password
One of the features that Apple made available in iOS & iPadOS 16 and later that I cherish greatly is the ability to copy my current Wi-Fi network password to my clipboard so that I can paste it elsewhere in the operating system, whether that’s a text message, a note to myself, or something else.
Alfie CG publishes write-up on Trigon, a deterministic kernel exploit based on CVE-2023-32434 that can’t fail
Another week, another intriguing write-up by the young and talented hobbyist security researcher @alfiecg_dev, who just this weekend published a blog post about a new deterministic kernel exploit called Trigon that is based on CVE-2023-32434, the same bug that the Kernel File Descriptor (KFD) exploit utilized with puaf_smith and was patched in iOS & iPadOS 16.5.1.
Lars Fröder talks at Nullcon Goa 2025 security conference, iOS 17 & 18 jailbreak challenges discussed
Speaking at a cybersecurity conference called Nullcon Goa 2025, Dopamine jailbreak and TrollStore perma-signing utility lead developer Lars Fröder, also more colloquially known around these parts as @opa334dev, took the stage to discuss the state of jailbreaking iPhones and iPads at present time.