CommunityNews

CommunityNews

Frustrated dev drops three zero-day vulns affecting Apple iOS 15

Upset with Apple’s handling of its Security Bounty program, a bug researcher has released proof-of-concept exploit code for three zero-day vulnerabilities in Apple’s newly released iOS 15 mobile operating system.

The bug hunter, posting on Thursday to Russia-based IT blog Habr under the name IllusionOfChaos and to Twitter under the same moniker, expressed frustration with Apple’s handling of vulnerability reports.

“I’ve reported four 0-day vulnerabilities this year between March 10 and May 4, as of now three of them are still present in the latest iOS version (15.0) and one was fixed in 14.7, but Apple decided to cover it up and not list it on the security content page,” the researcher wrote.

“When I confronted them, they apologized, assured me it happened due to a processing issue and promised to list it on the security content page of the next update. There were three releases since then and they broke their promise each time.”

Read in full here:

This thread was posted by one of our members via one of our news source trackers.

Most Liked

OvermindDL1

OvermindDL1

Saw this in the news, apple really really screwed up…

Where Next?

Popular Macos topics Top

First poster: teipanso
Apple complies with Dutch regulator’s ruling allowing apps to use other payment systems. Apple now allows dating app developers to use p...
New
First poster: bot
Apple Business Essentials now available for small businesses. Thousands of small businesses in the Apple Business Essentials beta report...
New
First poster: bot
Privacy watchdogs in Europe are considering a complaint against Apple made by a former employee, Ashley Gjøvik, who alleges the company f...
New
First poster: bot
Tony Fadell says the virtual reality world risks damaging human interaction and creating toxicity.
New
First poster: bot
Apple’s mixed reality headset will reportedly feature content created by Hollywood directors. Apple is reportedly partnering with Jon Fa...
New
First poster: bot
Get root on macOS 12.3.1: proof-of-concepts for Linus Henze’s CoreTrust and DriverKit bugs (CVE-2022-26766, CVE-2022-26763). Here are tw...
New
New
First poster: bot
An app developer’s lawsuit over App Store rejections, scams and fraud has ended in a settlement agreement after court filings show a requ...
New
New
CommunityNews
Telegram CEO Accuses Apple of Destroying Dreams and Crushing Entrepreneurs. Telegram’s CEO has accused Apple of destroying dreams and ru...
New

Other popular topics Top

AstonJ
I’ve been hearing quite a lot of comments relating to the sound of a keyboard, with one of the most desirable of these called ‘thock’, he...
New
AstonJ
I ended up cancelling my Moonlander order as I think it’s just going to be a bit too bulky for me. I think the Planck and the Preonic (o...
New
Rainer
Not sure if following fits exactly this thread, or if we should have a hobby thread… For many years I’m designing and building model air...
New
AstonJ
In case anyone else is wondering why Ruby 3 doesn’t show when you do asdf list-all ruby :man_facepalming: do this first: asdf plugin-upd...
New
AstonJ
Biggest jackpot ever apparently! :upside_down_face: I don’t (usually) gamble/play the lottery, but working on a program to predict the...
New
Help
I am trying to crate a game for the Nintendo switch, I wanted to use Java as I am comfortable with that programming language. Can you use...
New
First poster: bot
The overengineered Solution to my Pigeon Problem. TL;DR: I built a wifi-equipped water gun to shoot the pigeons on my balcony, controlle...
New
New
AstonJ
This is cool! DEEPSEEK-V3 ON M4 MAC: BLAZING FAST INFERENCE ON APPLE SILICON We just witnessed something incredible: the largest open-s...
New
Fl4m3Ph03n1x
Background Lately I am in a quest to find a good quality TTS ai generation tool to run locally in order to create audio for some videos I...
New