In late March, leaked reports revealed that Anthropic has developed a new AI model named Mythos, which they formally announced on Tuesday. Alongside this announcement, the company introduced an industry consortium called Project Glasswing, aimed at addressing the cybersecurity implications associated with this advanced model and the evolving capabilities across…
Sep 12, 2025
Apple has warned users in France about a new spyware campaign affecting their devices, as confirmed by the Computer Emergency Response Team of France (CERT-FR). Alerts were issued on September 3, 2025, marking the fourth occurrence this year where Apple notified citizens that at least one device linked to their iCloud accounts may have been compromised through targeted attacks. CERT-FR did not disclose specifics regarding the reasons behind these alerts. Previous notifications were sent on March 5, April 29, and June 25. Apple has been issuing these warnings since November 2021. According to CERT-FR, “These sophisticated attacks target individuals based on their status or role, including journalists, lawyers, activists, politicians, and senior officials in key sectors.” This news arrives shortly after a security vulnerability in WhatsApp (CVE-2025-55177, CVSS score: 5.4) was linked to similar threats.
Apple Alerts French Users to Fourth Spyware Campaign in 2025, CERT-FR Validates Findings On September 12, 2025, Apple issued a warning to its users in France regarding an ongoing spyware campaign that specifically targets their devices. This advisory comes as confirmed by the Computer Emergency Response Team of France (CERT-FR),…
Sep 12, 2025
Apple has warned users in France about a new spyware campaign affecting their devices, as confirmed by the Computer Emergency Response Team of France (CERT-FR). Alerts were issued on September 3, 2025, marking the fourth occurrence this year where Apple notified citizens that at least one device linked to their iCloud accounts may have been compromised through targeted attacks. CERT-FR did not disclose specifics regarding the reasons behind these alerts. Previous notifications were sent on March 5, April 29, and June 25. Apple has been issuing these warnings since November 2021. According to CERT-FR, “These sophisticated attacks target individuals based on their status or role, including journalists, lawyers, activists, politicians, and senior officials in key sectors.” This news arrives shortly after a security vulnerability in WhatsApp (CVE-2025-55177, CVSS score: 5.4) was linked to similar threats.
Apple Releases Backported Fix for CVE-2025-43300 Following Targeted Spyware Attack
September 16, 2025
Vulnerability | Spyware
On Monday, Apple announced backported fixes for the recently addressed security vulnerability CVE-2025-43300, which has been actively exploited. This critical flaw, with a CVSS score of 8.8, is an out-of-bounds write issue in the ImageIO component that can lead to memory corruption when processing malicious image files. Apple noted that this vulnerability may have been leveraged in a sophisticated attack against specific individuals. In a related development, WhatsApp reported a vulnerability (CVE-2025-55177, CVSS score: 5.4) within its iOS and macOS messaging apps that was exploited alongside CVE-2025-43300 in targeted spyware attacks against fewer than 200 victims. The original fix for the vulnerability was rolled out by Apple in late August with the releases of iOS 18.6.2, iPadOS 18.6.2, iPadOS 17.7.10, macOS Ventura 13.7.8, macOS Sonoma 14.7.8, and macOS Sequoia 15.6.1. Additional releases have also been made for other platforms…
Apple Addresses Vulnerability CVE-2025-43300 After Reports of Targeted Spyware Attacks September 16, 2025 Apple has recently implemented backported fixes for a significant security vulnerability, CVE-2025-43300, which has reportedly been exploited in sophisticated, targeted spyware incidents. The flaw, rated 8.8 on the CVSS scale, pertains to an out-of-bounds write issue within…
Apple Releases Backported Fix for CVE-2025-43300 Following Targeted Spyware Attack
September 16, 2025
Vulnerability | Spyware
On Monday, Apple announced backported fixes for the recently addressed security vulnerability CVE-2025-43300, which has been actively exploited. This critical flaw, with a CVSS score of 8.8, is an out-of-bounds write issue in the ImageIO component that can lead to memory corruption when processing malicious image files. Apple noted that this vulnerability may have been leveraged in a sophisticated attack against specific individuals. In a related development, WhatsApp reported a vulnerability (CVE-2025-55177, CVSS score: 5.4) within its iOS and macOS messaging apps that was exploited alongside CVE-2025-43300 in targeted spyware attacks against fewer than 200 victims. The original fix for the vulnerability was rolled out by Apple in late August with the releases of iOS 18.6.2, iPadOS 18.6.2, iPadOS 17.7.10, macOS Ventura 13.7.8, macOS Sonoma 14.7.8, and macOS Sequoia 15.6.1. Additional releases have also been made for other platforms…
Security researchers have unveiled a recently patched vulnerability in Apple’s macOS operating system that poses a significant risk of enabling unauthorized execution of malicious applications. The flaw, identified as CVE-2022-32910, originates from the built-in Archive Utility, which is essential for decompressing various file formats. This vulnerability allows an attacker to…
Recent findings by Google reveal that vulnerabilities exploited by the Coruna toolkit have been patched by Apple in the current versions of its iOS operating system, specifically iOS 26. As a result, the techniques used by Coruna are only confirmed to affect devices running iOS versions 13 through 17.2.1. This…
In recent developments, users of smartphones, internet browsers, and file compression software are facing heightened cybersecurity threats. Hackers are leveraging critical vulnerabilities in widely-used software before patches have even been made available. Organizations and individuals are urged to act swiftly and apply essential updates to mitigate these risks. ⚡ Threat…
Apple Inc. has recently released critical updates addressing a zero-day vulnerability identified in iOS and iPadOS that has reportedly been exploited in active cyberattacks. The flaw, tracked as CVE-2022-42827, pertains to an out-of-bounds write issue within the Kernel. This type of vulnerability can empower malicious applications to execute arbitrary code…
Recent reports indicate that many individuals—including prominent journalists and cybersecurity professionals—are being targeted by a sophisticated OAuth phishing campaign masquerading as a legitimate Google Docs sharing notification. Upon receiving a seemingly innocuous email claiming that a contact has shared a document, users are advised not to click the link under…
Cybersecurity Weekly Update Key Highlights: EU Bans AI Tools, Notepad++ Secures Updater, and Apple Fixes iOS Zero-Day By Pooja Tikekar, February 19, 2026 In the latest cybersecurity developments, Cambodia has taken significant action against online fraud, while the European Parliament has suspended AI tools over privacy concerns. Canada Goose is…
