Vue normale

Il y a de nouveaux articles disponibles, cliquez pour rafraîchir la page.
À partir d’avant-hier4sysops

PamStealer is a new type of of macOS malware

Par : IT News
3 juillet 2026 à 14:24
PamStealer is a new type of of macOS malware
A new macOS infostealer named PamStealer is targeting users by masquerading as the legitimate open-source clipboard manager Maccy. The infection begins when a victim downloads a malicious disk image from a fraudulent website designed to mimic the official project page. This initial stage utilizes a clever AppleScript wrapper that executes hidden JavaScript for Automation to retrieve the final payload.

Source

Apple explores Chinese memory chips to mitigate global supply shortages

Par : IT News
2 juillet 2026 à 20:28
Apple explores Chinese memory chips to mitigate global supply shortages
Apple is reportedly negotiating with Chinese semiconductor manufacturers ChangXin Memory Technologies and Yangtze Memory Technologies to secure a stable supply of memory chips. This move aims to counter a worsening global supply crunch driven by the rapid growth of artificial intelligence technologies. While these Chinese firms are currently on a Pentagon blacklist, Apple is seeking to navigate political hurdles to integrate their components into its hardware ecosystem.

Source

Apple Hide My Email vulnerability exposes real user addresses

Par : IT News
1 juillet 2026 à 19:50
Apple Hide My Email vulnerability exposes real user addresses
A critical vulnerability in Apple’s Hide My Email service reportedly allows attackers to uncover the real email addresses associated with generated aliases. Discovered by security researcher Tyler Murphy, the flaw was responsibly reported to Apple over a year ago but remains unpatched despite multiple follow-ups. Independent testing by 404 Media successfully verified the exploit, confirming that a hidden iCloud address could be linked to a user's primary identity in minutes.

Source

Apple accelerates security patching to counter AI-driven exploit development

Par : IT News
30 juin 2026 à 17:02
Apple accelerates security patching to counter AI-driven exploit development
Apple has shifted its security strategy by releasing an unexpected out-of-band update to address over 30 vulnerabilities across its ecosystem. This move targets flaws in iOS, iPadOS, macOS, and Safari, including a high-severity use-after-free bug in the WebKit engine. The company indicated that this accelerated release schedule is a direct response to the decreasing time between vulnerability discovery and active exploitation.

Source

Oracle to end Java support for Intel Macs starting with JDK 27

Par : IT News
30 juin 2026 à 12:40
Oracle to end Java support for Intel Macs starting with JDK 27
Oracle has announced plans to stop maintaining the macOS/x64 port of the Java Development Kit beginning with JDK 27, scheduled for release in September. While the deprecation is currently in a draft state, a pull request has already been submitted to implement the change within the Java Virtual Machine. Future builds for Intel-based Macs will require a specific flag, but Oracle will no longer guarantee that the software will build or function correctly.

Source

New macOS exploit abuses XPC trust caching to disable security tools

Par : IT News
29 juin 2026 à 19:04
New macOS exploit abuses XPC trust caching to disable security tools
Security researchers have identified a technique that allows attackers to disable enterprise protection tools on macOS without requiring administrative credentials or kernel exploits. The method targets Apple’s Inter-Process Communication framework, known as XPC, which manages communication between applications and privileged background services. By exploiting how macOS caches trust fingerprints for signed applications, an attacker can inject malicious payloads into a legitimate app bundle while maintaining its trusted status.

Source

MirrorCode benchmark reveals the high costs and limits of AI software engineering

Par : IT News
26 juin 2026 à 20:15
MirrorCode benchmark reveals the high costs and limits of AI software engineering
Epoch AI has introduced MirrorCode, a new benchmark designed to evaluate whether AI models can reconstruct entire software programs without seeing the original source code. This test requires models to recreate complex codebases based only on high-level descriptions and functional requirements. While current models show promise in smaller tasks, the benchmark highlights significant performance gaps when dealing with large-scale, intricate software architectures.

Source

❌
❌