#iossecurity — Public Fediverse posts

Keychai... #Ioskeychain #Encryptedstorage #Keychainaccess #Playerprefsalternative #Iosdatastorage #Securedata #Ios #Datapersistence #Keychain #Keychainplugin #Objectstorage #Iossecurity #Keychainapi #Dataencryption #Credentialstorage #AssetStore

https://u3dn.com/packages/keychain-for-ios-311190

Keychai... #Ioskeychain #Encryptedstorage #Keychainaccess #Playerprefsalternative #Iosdatastorage #Securedata #Ios #Datapersistence #Keychain #Keychainplugin #Objectstorage #Iossecurity #Keychainapi #Dataencryption #Credentialstorage #AssetStore

https://u3dn.com/packages/keychain-for-ios-311190

Keychai... #Ioskeychain #Encryptedstorage #Keychainaccess #Playerprefsalternative #Iosdatastorage #Securedata #Ios #Datapersistence #Keychain #Keychainplugin #Objectstorage #Iossecurity #Keychainapi #Dataencryption #Credentialstorage #AssetStore

https://u3dn.com/packages/keychain-for-ios-311190

DarkSword iOS exploit kit leaked on GitHub.
• 6-vuln chain
• Targets iOS 18 and older
• Enables full spyware deployment
• Now usable by low-skill actors
Shift from targeted espionage → scalable threat.

https://www.technadu.com/darksword-iphone-exploit-kit-newer-version-leaks-on-github-exposing-ios-users-to-spyware/624227/

#InfoSec #ZeroDay #iOSSecurity

Darksword exploit kit chains 6 iOS flaws to achieve full device compromise.
• RCE → kernel access
• Used by multiple threat actors
• High-risk data exfiltration

Patch immediately 👇
https://www.technadu.com/darksword-exploit-kit-deploying-ios-spyware-on-iphones-adopted-by-multiple-threat-actors/623708/

#InfoSec #iOSSecurity #ZeroDay

"¡Alerta iPhone! 'Coruna': kit de exploits ultra-sofisticado (posiblemente del gobierno EE.UU.) se filtra al mercado negro. Usa 23 vulnerabilidades en iOS 13-17.2.1 → hackea solo visitando web maliciosa. Actualiza YA a iOS 26 para blindarte. No es broma. 🔒#Coruna #iOSSecurity"

We’ve been trained to think privacy is a feature you toggle on. In reality, it’s an ongoing negotiation between users, systems, companies, and incentives that rarely align.

What surprised me most here isn’t just the number, roughly 3,400 tracking-related calls per hour, but how invisible they are. A phone sitting quietly on your desk can still be busy talking to the world. Silence, it turns out, is not the same as restraint.

The deeper lesson is about trust. When companies market privacy as a core value, every background behavior becomes part of that promise. Transparency isn’t about fewer connections; it’s about honest ones. Privacy doesn’t fail loudly. It fails politely, efficiently, and at scale.

TL;DR
🧠 Idle devices can still generate massive data traffic
⚡ Volume matters less than visibility and consent
🎓 Privacy is a system design choice, not a settings page
🔍 Trust erodes when defaults do more than users expect

https://www.webpronews.com/iphones-leak-data-via-3400-hourly-tracking-calls-sparking-outrage/

#Privacy #TechEthics #DigitalTrust #iOSSecurity #iPhone #security #cloud #infosec #cybersecurity

📬 SparkKitty – der Foto-Räuber, den (noch) niemand auf dem Schirm hat
#Malware #Smartphones #AndroidTrojaner #AppStoreGefahren #FotoStealer #iOSSecurity #KryptoSicherheit #MobileMalware https://sc.tarnkappe.info/1f7618

📬 SparkKitty – der Foto-Räuber, den (noch) niemand auf dem Schirm hat
#Malware #Smartphones #AndroidTrojaner #AppStoreGefahren #FotoStealer #iOSSecurity #KryptoSicherheit #MobileMalware https://sc.tarnkappe.info/1f7618

📬 SparkKitty – der Foto-Räuber, den (noch) niemand auf dem Schirm hat
#Malware #Smartphones #AndroidTrojaner #AppStoreGefahren #FotoStealer #iOSSecurity #KryptoSicherheit #MobileMalware https://sc.tarnkappe.info/1f7618

📬 SparkKitty – der Foto-Räuber, den (noch) niemand auf dem Schirm hat
#Malware #Smartphones #AndroidTrojaner #AppStoreGefahren #FotoStealer #iOSSecurity #KryptoSicherheit #MobileMalware https://sc.tarnkappe.info/1f7618

📬 SparkKitty – der Foto-Räuber, den (noch) niemand auf dem Schirm hat
#Malware #Smartphones #AndroidTrojaner #AppStoreGefahren #FotoStealer #iOSSecurity #KryptoSicherheit #MobileMalware https://sc.tarnkappe.info/1f7618

Imagine malware hiding in plain sight—trusted apps in official stores infected with SparkKitty are quietly stealing crypto secrets. How secure is your phone, really?

https://thedefendopsdiaries.com/understanding-the-sparkkitty-malware-threat/

#sparkkitty
#malwarethreat
#mobilesecurity
#iossecurity
#androidsecurity

Imagine malware hiding in plain sight—trusted apps in official stores infected with SparkKitty are quietly stealing crypto secrets. How secure is your phone, really?

https://thedefendopsdiaries.com/understanding-the-sparkkitty-malware-threat/

#sparkkitty
#malwarethreat
#mobilesecurity
#iossecurity
#androidsecurity

Imagine malware hiding in plain sight—trusted apps in official stores infected with SparkKitty are quietly stealing crypto secrets. How secure is your phone, really?

https://thedefendopsdiaries.com/understanding-the-sparkkitty-malware-threat/

#sparkkitty
#malwarethreat
#mobilesecurity
#iossecurity
#androidsecurity

Installing unsigned or fake-signed iOS apps for testing without a Mac, Xcode, or access to proper signing tools can be a challenge.

Since iOS normally relies on the App Store to handle signing, getting apps onto a device manually isn’t always straightforward.

In our latest blog, we break down the main approaches to sideloading using tweaks on jailbroken devices, sideloading platforms like AltStore and Sideloadly, and on-device tools like TrollStore.

Whether your device is jailbroken or not, you’ll find a method that works.

📌Read here: https://www.pentestpartners.com/security-blog/how-to-load-unsigned-or-fake-signed-apps-on-ios/

#iOSSecurity #MobileAppTesting #Sideloading #CyberSecurity #infosec

🚨 iVerify's iOS app detected 11 new Pegasus infections in December 2024! 🦠 Shockingly, about half of the affected devices didn’t receive Threat Notifications from Apple. A major security concern! 🔐 #iOSSecurity #PegasusSpyware #Apple #TechNews #Privacy

https://posivi.com/iverifys-ios-app-detected-11-new-pegasus-infections-in-december-2024/

I always find these kinds of posts fascinating and can usually pick up a glimpse of iOS design from them. In this case, the article talks a lot about the Secure Enclave and how it interacts with other parts of the phone. I also appreciate the before first unlock / after first unlock call outs.

#ios #security #iossecurity #blogposts #iphone https://naehrdine.blogspot.com/2024/11/reverse-engineering-ios-18-inactivity.html

TCC iOS Subsystem Vulnerability Exposes iCloud Data To Attackers https://cybersecuritynews.com/tcc-ios-subsystem-flaw-exposes-icloud-data/ #VulnerabilityExploitation #CyberSecurityNews #VulnerabilityNews #DataPrivacy #iOSSecurity #Apple

CocoaPods flaws left iOS, macOS apps open to supply-chain attack https://www.csoonline.com/article/2512935/cocoapods-flaws-left-ios-macos-apps-open-to-supply-chain-attack.html #DevelopmentLibrariesandFrameworks #DevelopmentTools #MacOSSecurity #iOSSecurity

iOS Bug Hunting – Web View XSS

https://www.allysonomalley.com/2018/12/03/ios-bug-hunting-web-view-xss/

#MobileSecurity #iOSsecurity #infosec

Wednesday == hump day == patch yo shit day!

https://support.apple.com/en-us/HT201222

https://support.apple.com/kb/HT213813
https://support.apple.com/kb/HT213814
https://support.apple.com/kb/HT213813
https://support.apple.com/kb/HT213810
https://support.apple.com/kb/HT213809
https://support.apple.com/kb/HT213812
https://support.apple.com/kb/HT213808

#iOSSecurity #macOSSecurity #HT201222

Mobile Pentesting 101 – How To Set Up Your Ios Environment

https://securitycafe.ro/2023/06/12/mobile-pentesting-101-how-to-set-up-your-ios-environment/

#MobileSecurity #iOSsecurity #infosec

Develop your own zero day vulnerabilities in iOS : https://faisalmemon.github.io/the-road-to-zero/ #iOSSecurity #MobileSecurity

Italian spyware firm is hacking into iOS and Android devices, Google says - Google's Threat Analysis Group (TAG) has identified Italian vendor RCS Lab as a spywar... - https://www.computerworld.com/article/3665050/italian-spyware-firm-is-hacking-into-ios-and-android-devices-google-says.html#tk.rss_all #androidsecurity #iossecurity #google #apple

Unpatchable bug in millions of iOS devices exploited, developer claims - Enlarge / Devices as recent as the iPhone X, based on Apple's A11 chip, are claimed to be vulnerabl... more: https://arstechnica.com/?p=1575923 #jailbreaking #iossecurity #biz&it #tech #ios