A single iMessage might now compromise your iPhone—no clicks needed. Graphite spyware is targeting journalists worldwide and raising serious questions about our digital safety. Curious to learn more?

https://thedefendopsdiaries.com/graphite-spyware-a-zero-click-threat-to-journalists/

#graphitespyware
#zeroclickexploit
#iossecurity
#cyberthreats
#journalistprotection

Installing unsigned or fake-signed iOS apps for testing without a Mac, Xcode, or access to proper signing tools can be a challenge.

Since iOS normally relies on the App Store to handle signing, getting apps onto a device manually isn’t always straightforward.

In our latest blog, we break down the main approaches to sideloading using tweaks on jailbroken devices, sideloading platforms like AltStore and Sideloadly, and on-device tools like TrollStore.

Whether your device is jailbroken or not, you’ll find a method that works.

📌Read here: https://www.pentestpartners.com/security-blog/how-to-load-unsigned-or-fake-signed-apps-on-ios/

#iOSSecurity #MobileAppTesting #Sideloading #CyberSecurity #infosec

🚨 iVerify's iOS app detected 11 new Pegasus infections in December 2024! 🦠 Shockingly, about half of the affected devices didn’t receive Threat Notifications from Apple. A major security concern! 🔐 #iOSSecurity #PegasusSpyware #Apple #TechNews #Privacy

https://posivi.com/iverifys-ios-app-detected-11-new-pegasus-infections-in-december-2024/

I always find these kinds of posts fascinating and can usually pick up a glimpse of iOS design from them. In this case, the article talks a lot about the Secure Enclave and how it interacts with other parts of the phone. I also appreciate the before first unlock / after first unlock call outs.

#ios #security #iossecurity #blogposts #iphone https://naehrdine.blogspot.com/2024/11/reverse-engineering-ios-18-inactivity.html

Gold Pickaxe iOS Technical Analysis: IPA Overview and C2 Communication Start up

https://syrion.me/goldpickaxe-technical-analysis-ipa-c2/

#iossecurity #mobilesecurity #applesecurity #malware #malwareanalysis #reverseengineering

Operation Triangulation’ #Spyware Attackers Bypass #iPhone Memory Protections...iMessage attachment, exploiting the remote code execution (#RCE) #vulnerability CVE-2023-41990.

#apple #cybersecurity #technology #news #iPhones #ios #iossecurity

Source🔗
https://www.darkreading.com/application-security/operation-triangulation-spyware-attackers-bypass-iphone-memory-protections

iOS Bug Hunting – Web View XSS

https://www.allysonomalley.com/2018/12/03/ios-bug-hunting-web-view-xss/

#MobileSecurity #iOSsecurity #infosec

Wednesday == hump day == patch yo shit day!

https://support.apple.com/en-us/HT201222

https://support.apple.com/kb/HT213813
https://support.apple.com/kb/HT213814
https://support.apple.com/kb/HT213813
https://support.apple.com/kb/HT213810
https://support.apple.com/kb/HT213809
https://support.apple.com/kb/HT213812
https://support.apple.com/kb/HT213808

#iOSSecurity #macOSSecurity #HT201222

Mobile Pentesting 101 – How To Set Up Your Ios Environment

https://securitycafe.ro/2023/06/12/mobile-pentesting-101-how-to-set-up-your-ios-environment/

#MobileSecurity #iOSsecurity #infosec