I published another part of my notes about debugging the loading process and analyzing the low-level functionalities of dyld.

karol-mazurek.medium.com/dyld-do-you-li…

Enjoy!
#apple #arm #c #dyld #debugging #programming #lldb #re

Discover how CVE-2023-42931 exposes root privilege escalation vulnerabilities in Apple macOS Ventura, Sonoma, and Monterey.

hackhunting.com/2024/04/05/eas…

#bugbounty tips #bugbounty

Apple has just released updates to XProtect and XProtect Remediator eclecticlight.co/2024/04/30/app… via Howard Oakley, Eclectic Light Co

New from Chris (L0Psec) of Kandji
'[macOS] Malware: Cuckoo Behaves Like Cross Between Infostealer & Spyware': blog.kandji.io/malware-cuckoo… 🍎👾👀

Friends of Objective-See Foundation, MacPaw 🇺🇦/Moonlock Lab continue to uncover & analyze interesting macOS malware! 🍎👾👀 Have a read 🤗

NEW: An ex-NSA hacker and an ex-Apple researcher are launching a startup with the goal of helping other companies make better security products for iOS and macOS.

They’ll make modules, like monitoring network flow, that can be plugged into other tools.

techcrunch.com/2024/04/25/ex-…

Apple declares war on Adload malware eclecticlight.co/2024/04/25/app… via Howard Oakley, Eclectic Light Co

Apple has just released updates to XProtect and XProtect Remediator eclecticlight.co/2024/04/23/app… via Howard Oakley, Eclectic Light Co
Look out, Adload: Apple’s coming to get you!

Apple consciously (& greedily) made the decision to be the arbiter/gatekeeper of what can run on our iOS devices 😑

...which directly empowers governments to ban whatever apps they so choose: reuters.com/technology/app…

#XAgent Spyware Targeting #iOS Devices in Western Europe: Analysis of Capabilities linkedin.com/pulse/xagent-s…

All this was possible thanks to @Patrickwardle who gave me the chance to attend as a scholar. If you're interested in Apple security, this conference is a must-attend. It's a fantastic opportunity to learn and meet cool people in the field. 🍎🐛

#OBTS One of the best conferences I've ever attended, if not the best. The training was very well-prepared, and the talks were super interesting. If you're into Apple security, you should definitely check out this conference! 🍎

vx-underground There are many great books on malware.
My 2️⃣ faves:

🔘 Computer Viruses, Artificial Life, and Evolution by Mark A. Ludwig — the book that got me excited about security (he also authored The Giant Black Book of Computer Viruses)

🔘 The Art of Mac Malware by Patrick Wardle 🐛‍🍎

Rustbucket Malware still showing signs of being updated...

Interested in learning more about Apple security? If you're in San Francisco 5/9-10, join us for this free event!
twitter.com/objective_see/…

Dang those Objective-C skills still pay off.

What to do if Apple contacts you about malware or security eclecticlight.co/2024/04/12/wha… via Howard Oakley, Eclectic Light Co

Apple silicon chips (M1, M2, and M3) have an “unpatchable” security flaw, researchers say.

The “GoFetch” vulnerability affect Macs—and may also impact iPads and even Apple Vision Pro. 🍎‍🥽

Learn how GoFetch attacks could affect you:
🔗 intego.com/mac-security-b…