🚀 Medial Secures Investment on Shark Tank India - Fueling the Future of Professional Social Networking. 🔥

Startup Showcase

Premium Content

Try our Valuation Calculator →

News on Medial

Newly discovered flaws in Apple chips leak secrets in Safari and Chrome

Arstechnica

Arstechnica · 6m ago

Newly discovered flaws in Apple chips leak secrets in Safari and Chrome

Security researchers discovered two vulnerabilities, FLOP and SLAP, in Apple’s A- and M-series chips affecting Macs, iPhones, and iPads. These vulnerabilities enable side-channel attacks that exploit speculative execution, allowing attackers to access sensitive data like credit card information, locations, and emails from Chrome and Safari browsers. FLOP targets memory content prediction, while SLAP abuses memory location prediction. Mitigation strategies were suggested, and Apple plans to release patches. Despite concerns, Apple claims no immediate user risk.

Related News

Hackers can force iOS and macOS browsers to divulge passwords and a whole lot more

Arstechnica

Arstechnica · 1y ago

Hackers can force iOS and macOS browsers to divulge passwords and a whole lot more

Researchers have discovered a side channel vulnerability in the A- and M-series CPUs used in modern iOS and macOS devices, which can be exploited to obtain passwords and sensitive information from Apple's Safari browser. The attack, known as iLeakage, requires reverse-engineering of Apple hardware and expertise in side-channel vulnerabilities. It leverages speculative execution, a performance enhancement feature found in modern CPUs, to recover secrets from targeted systems. The researchers implemented iLeakage as a website that opens a separate page to steal information when visited by a vulnerable device. Apple is aware of the vulnerability and plans to address it in a future software release.

Chrome users at risk! CERT-In issues warning: How to prevent a data breach

Livemint

Livemint · 1y ago

Chrome users at risk! CERT-In issues warning: How to prevent a data breach

CERT-In has issued an advisory urging users of Google Chrome for desktop to update their browsers immediately. The Indian Computer Emergency Response Team has classified the discovered vulnerabilities as high-risk and highlights the need for immediate action to protect systems. The vulnerabilities affect Chrome versions prior to 126.0.6478.114/115 on Windows and Mac, and versions prior to 126.0.6478.114 on Linux. The flaws include type confusion in the JavaScript engine, inappropriate bounds memory access in the graphics library, and use after free memory reuse. Failure to update could result in malicious code execution and potential data breaches.

Apple unveils web-based Maps Beta, bringing navigation to browsers: Details

Livemint

Livemint · 1y ago

Apple unveils web-based Maps Beta, bringing navigation to browsers: Details

Apple has launched the public beta of Apple Maps on the web, allowing users to access the service directly from their browsers. The web-based Apple Maps offers driving and walking directions, gas station information, and comprehensive place details. Users can also order food from the place card within Maps and access curated Guides. The service is currently in English and compatible with Safari, Chrome, and Edge browsers. Apple aims to expand support to additional languages, browsers, and platforms in the future. The launch of Apple Maps on the web provides an alternative to Google Maps.

Government issues critical warning for Apple users: How to protect your device

Livemint

Livemint · 9m ago

Government issues critical warning for Apple users: How to protect your device

The Indian Computer Emergency Response Team (CERT-In) has issued a critical advisory warning users about vulnerabilities in Apple products. These security flaws primarily affect devices running older versions of iOS, iPadOS, macOS, Vision OS, and Safari, exposing users to potential cyber threats. CERT-In advises users to update their software to the latest versions to mitigate the risks. Apple has already addressed these vulnerabilities in recent updates and users are encouraged to promptly update to ensure continued security. For devices that can no longer receive updates, upgrading to newer models is recommended.

Apple fixes Vision Pro bug that flooded user's space with virtual objects

Livemint

Livemint · 1y ago

Apple fixes Vision Pro bug that flooded user's space with virtual objects

Apple has fixed a bug in its Vision Pro system that allowed websites to flood a user's environment with virtual 3D objects. The vulnerability was discovered by a cybersecurity expert who used flying bats as an example to demonstrate the flaw. These virtual objects could persist in the user's space even after closing Safari. Apple has now implemented stricter security measures to control what can enter a user's personal space within Vision Pro, ensuring a higher level of security. The bug was publicly acknowledged, and the researcher who discovered it was rewarded with a bug bounty.

Phone chipmaker Qualcomm fixes three zero-days exploited by hackers | TechCrunch

TechCrunch · 2m ago

Phone chipmaker Qualcomm fixes three zero-days exploited by hackers | TechCrunch

Qualcomm has issued patches for several vulnerabilities in its chips, including three zero-days potentially exploited by hackers. Discovered by Google’s Threat Analysis Group, these flaws, reported in February, pose significant risks as zero-days are previously unknown to developers. Despite Qualcomm’s release, the responsibility lies with device manufacturers to implement updates, leaving some devices vulnerable. Google confirmed its Pixel devices are unaffected. The urgency for patch deployment highlights the ongoing risks in chip security.

Is this the end of ‘Intel Inside’?

Livemint

Livemint · 1y ago

Is this the end of ‘Intel Inside’?

Intel is facing a critical battle for market share as multiple companies like Apple, Microsoft, and Qualcomm shift away from its chips. With Apple having already moved away entirely from Intel's chips, Microsoft is accelerating efforts to make Windows run on ARM-based processors. Google's Chrome OS is also posing a threat to Microsoft. These shifts could result in the loss of Intel's market dominance and the "Intel Inside" sticker on PCs. However, Intel is determined to stay competitive, with plans for new chip generations and advancements in manufacturing technology.

Researchers say easy-to-exploit security bugs in ConnectWise remote-access software now under mass attack

TechCrunch · 1y ago

Researchers say easy-to-exploit security bugs in ConnectWise remote-access software now under mass attack

Security researchers have discovered two vulnerabilities in ConnectWise ScreenConnect, a popular remote-access tool used by over a million companies. Hackers are mass exploiting these flaws to deploy ransomware and steal sensitive data. The vulnerabilities include an authentication bypass issue and a path-traversal vulnerability allowing attackers to remotely plant malicious code. Although ConnectWise disclosed the flaws and urged customers to install patches, thousands of servers remain vulnerable. Cybersecurity firms have observed various threat actors exploiting the flaws, deploying password stealers, back doors, and ransomware. The scope of the vulnerabilities' impact is currently unknown.

Magnificent Seven set to shed $1 trillion in value, led by Apple, Nvidia

Economic Times

Economic Times · 1y ago

Magnificent Seven set to shed $1 trillion in value, led by Apple, Nvidia

Apple and Nvidia led a sell-off in technology stocks on Monday as fears of a U.S. recession and Berkshire Hathaway cutting its stake in Apple weighed on the sector. Shares of Alphabet, Amazon, Meta Platforms, Microsoft, and Tesla also fell. Chip stocks, including Advanced Micro Devices, Intel, Super Micro Computer, and Broadcom, also saw significant declines. The slide in stock prices was influenced by a weak U.S. payrolls report and concerns about the tech industry's outlook. Additionally, reports of design flaws potentially delaying the launch of Nvidia's AI chips impacted the company's shares.

South Korea vows to prevent technology leaks with heavier penalties

Economic Times

Economic Times · 10m ago

South Korea vows to prevent technology leaks with heavier penalties

South Korea is taking steps to prevent leaks of business secrets to foreign competitors. The government plans to establish a big data system to prevent technology leaks at the patent agency and introduce stricter regulations for culprits. In the past five years, there have been 97 attempts to leak business secrets, with a focus on the semiconductor industry. The National Intelligence Service estimates that successful leaks would result in a loss of approximately $16.85 billion to the country. South Korea has designated 12 industries as national strategic technologies, providing financial support and protection to compete globally.

Trackers

Active Indian VC’s

OG Capital Email

With a hands-on approach, OG Capital aims to invest in over 20 promising...

Accel Partners Email

Early and growth-stage investments in disruptive technology companies with...

Early-stage venture capital firm investing in technology startups in India. Focus on...

Access All Trackers

Startup Showcase Winners

June 2025

Helping your parents when you are miles away

The Pit Stop Your Cravings Deserve

The next generation E-commerce platform

Enter Ongoing Startup Showcase

Top Users

Trending News on Medial

Download the medial app to read full posts, comements and news.