Apple says Safari iOS 17.3 patches four security and privacy vulnerabilities on older macOS editions, one of which may have been exploited.
WebKit
Install iOS 16.6 and other Apple updates to get fixes for actively exploited flaws
iOS 16.6 and other Apple updates bring security fixes for many vulnerabilities, including ones that have been actively exploited in the wild.
Apple pulls the latest Rapid Security Response because it broke websites
Apple has temporarily pulled the latest Rapid Security Response update due to a bug preventing some websites from working correctly in Safari.
Apple’s latest Rapid Security Response update protects you against an actively exploited vulnerability [pulled]
Apple has released a new Rapid Security Response update for the iPhone, iPad and Mac to fix an actively exploited vulnerability discovered in its WebKit engine.
Install iOS 16.5.1, macOS Ventura‌‌‌‌‌ 13.4.1 and watchOS 9.5.2 to fix security issues that have been actively exploited
According to the iOS 16.5.1 release notes, the latest updates fix security issues in the kernel and WebKit that have been actively exploited in the wild.
PlayStation 5 jailbroken via Cryptogenic exploit
Jailbreaking isn’t just for iPhones. In fact, just about any device that runs firmware has the capacity to be hacked so that the end user can run mods not initially intended by the manufacturer of said device. Sony fans found that out Monday after an apparent jailbreak surfaced for the PlayStation 5 – Sony’s latest game console as of 2022.
Apple devices remain vulnerable to a WebKit flaw that could permit malicious code to run
Safari's WebKit rendering engine has a flaw that could crash the browser and enable malicious code execution, and Apple hasn't yet patched it even though a fix's been available for weeks.
WebKit code references Apple’s unreleased iOS 15 and macOS 12 software updates
Apple's refreshed code for the WebKit layout engine used by Safari and other web browsers includes references to the major iOS 15 and macOS 12 software updates launching this fall.
How to view the website Privacy Report in Safari
Learn how to review the Privacy Report in Safari on iPhone, iPad, and Mac to find out which sites track your activity when browsing the web.
Luca Todesco has released a WebKit RCE exploit that works on iOS 12.1.4 and earlier
Before the days of Electra and unc0ver dawned upon us, there was Yalu, an iOS 10-centric jailbreak too by the talented hacker Luca Todesco (@qwertoruiopz); but apart from a few teasers here and there, the jailbreak community hasn’t heard much him since the Yalu days – that is, until now.
In a bombshell Tweet shared this week, Todesco released what appears to be a WebKit-based exploit that allows remote code execution (RCE) in web browsers with JIT. What’s more is that the exploit was only just fixed three days ago, which means it should be viable on all versions of iOS up to Apple’s latest release – 12.1.4:
Linus Henze releases Safari-centric exploit targeting iOS 12.1 and earlier
It was only a few days ago that we learned about a sandbox escape PoC for iOS 12.0-12.0.1, and while it was just a proof of concept, there’s always the potential that a talented hacker could make use of it for future endeavors; perhaps even jailbreak development.
Fortunately, that’s not the only iOS 12-centric vulnerability floating around in the wild these days. As it would seem, a Safari-based exploit targeting iOS 12.1 and below (and macOS 10.14.1 and below) was also released this week by iOS tinkerer Linus Henze.
What Progressive Web Apps are and how to install and use them on iPhone and iPad
Thanks to modern web technologies like HTML5, Progressive Web Apps (PWA) run in a browser, don't require separate distribution, combine features of native apps with the benefits of a mobile experience and let you keep them on the Home Screen without the hassle of an app store.
In this tutorial, we'll help you install Progressive Web App to your iPhone or iPad Home Screen.