CommunityNews

CommunityNews

Frustrated dev drops three zero-day vulns affecting Apple iOS 15

Upset with Apple’s handling of its Security Bounty program, a bug researcher has released proof-of-concept exploit code for three zero-day vulnerabilities in Apple’s newly released iOS 15 mobile operating system.

The bug hunter, posting on Thursday to Russia-based IT blog Habr under the name IllusionOfChaos and to Twitter under the same moniker, expressed frustration with Apple’s handling of vulnerability reports.

“I’ve reported four 0-day vulnerabilities this year between March 10 and May 4, as of now three of them are still present in the latest iOS version (15.0) and one was fixed in 14.7, but Apple decided to cover it up and not list it on the security content page,” the researcher wrote.

“When I confronted them, they apologized, assured me it happened due to a processing issue and promised to list it on the security content page of the next update. There were three releases since then and they broke their promise each time.”

Read in full here:

This thread was posted by one of our members via one of our news source trackers.

Most Liked

OvermindDL1

OvermindDL1

Saw this in the news, apple really really screwed up…

Where Next?

Popular Macos topics Top

First poster: bot
A few weeks ago, we’ve seen Apple announce their newest iPhone 13 series devices, a set of phones being powered by the newest Apple A15 S...
New
New
New
First poster: AstonJ
Moving a macOS window by clicking anywhere on it (like on Linux). Today I learned that since macOS High Sierra onwards you can move a wi...
New
First poster: AstonJ
The new feature will be available in the autumn and comes after its devices were successfully targeted.
New
New
First poster: bot
Report: Apple to Move a Part of its Embedded Cores to RISC-V, Stepping Away from Arm ISA. According to Dylan Patel of SemiAnalysis sourc...
New
First poster: DevotionGeo
The new Mac Pro chip could double or quadruple the power of the M2 Max. Apple’s expected to launch the new Mac Pro next year.
New
CommunityNews
It only took 50 years, but there’s finally a replacement that’s safer and easier to use.
New
First poster: bot
Apple Says iPhone Usage Data Is Anonymous. New Tests Say: Not True. Your iPhone’s analytics data includes an ID number tied to your name...
New

Other popular topics Top

Devtalk
Hello Devtalk World! Please let us know a little about who you are and where you’re from :nerd_face:
New
ohm
Which, if any, games do you play? On what platform? I just bought (and completed) Minecraft Dungeons for my Nintendo Switch. Other than ...
New
AstonJ
We have a thread about the keyboards we have, but what about nice keyboards we come across that we want? If you have seen any that look n...
New
AstonJ
I’ve been hearing quite a lot of comments relating to the sound of a keyboard, with one of the most desirable of these called ‘thock’, he...
New
AstonJ
Just done a fresh install of macOS Big Sur and on installing Erlang I am getting: asdf install erlang 23.1.2 Configure failed. checking ...
New
Rainer
Not sure if following fits exactly this thread, or if we should have a hobby thread… For many years I’m designing and building model air...
New
dimitarvp
Small essay with thoughts on macOS vs. Linux: I know @Exadra37 is just waiting around the corner to scream at me “I TOLD YOU SO!!!” but I...
New
DevotionGeo
The V Programming Language Simple language for building maintainable programs V is already mentioned couple of times in the forum, but I...
New
AstonJ
Biggest jackpot ever apparently! :upside_down_face: I don’t (usually) gamble/play the lottery, but working on a program to predict the...
New
PragmaticBookshelf
Author Spotlight: Sophie DeBenedetto @SophieDeBenedetto The days of the traditional request-response web application are long gone, b...
New