Search Results for “MacRumors”


May 18, 2020
David Shortell, Evan Perez / CNN

David Shortell, Evan Perez / CNN  
FBI Claims to Have Broken the Encryption on Pensacola Shooter’s iPhones Substantially Weakening the Government’s Push for Encryption Backdoors

Mohammed Alshamrani, a member of the Royal Saudi Air Force in training at Naval Air Station Pensacola who killed three U.S. sailors and wounded others at the base, was in touch with a suspected al Qaeda operative, according to the FBI broke which broke through the encryption protecting the Saudi attacker’s iPhones, sources say. If the Bureau did achieve this encryption breakthrough, the case made by the FBI and Attorney General William Barr for demanding backdoors into encrypted communications services and devices appears to be substantially weakened. Law enforcement said they had initially been unable to retrieve data stored on two iPhones belonging to the shooter, and they cited that hurdle in trying to complete their investigation of the attacker’s ideology and his radicalization.

Related: New York Times, Wall Street Journal, Forbes, Justice Department, MacRumors, Associated Press, Task & Purpose, Capital Gazette, The Sun, Business Insider, AOL, GANNETT Syndication Service, Newsweek, Yahoo! News, Bloomberg, RT USA, The Crime Report, Axios, Cult of Mac, USATODAY, AppleInsider, NBC News, Wired, The Register – Security, Cyberscoop, CNET, News : NPR, iDownloadBlog.com, Fortune, WCCFtech, ZDNet Security, AppleInsider, iMore, Cult of Mac, Patently Apple, Business Insider, The Sun, BuzzFeed News, Newsweek, iDownloadBlog.com, Appleosophy, MacRumors, Homeland Security Today, Zero Hedge, CBSNews.com,TechSpot, iPhone Hacks, The Mac Observer,Cult of Mac, The Guardian, UPI.com, TIME, Ars Technica, USATODAY, New York Post, AppleInsider, The Huffington Post , Capital Gazette, TIME, Heavy.com, Engadget, Slashdot, Daily Dot, Cyberscoop, Multichannel, Vox, WCCFtech, POLITICO, The Sun, USNI News, Business Insider, Fortune, Input, TribLIVE, emptywheel, PhoneArena, Channel News Asia, RT USA, Algemeiner.com, MacDailyNews, Reuters: U.S., France 24, The New Daily, The Verge, Slashdot, Washington Post, New York Times

Tweets:@dnvolz @adamgoldmanNYT @kevincollier @nakashimae @zackwhittaker @zackwhittaker @zackwhittaker @iblametom @karaswisher @macrumors @zackwhittaker @iblametom @dotmudge @DevlinBarrett @ahmed

New York Times: F.B.I. Is Said to Find Links Between Pensacola Gunman and Al Qaeda
Wall Street Journal: FBI Discovers al Qaeda Link in Pensacola Attack
Forbes: Feds Hack iPhones In Pensacola Terrorist Shooting Case, But Still Slam Apple For Not Helping
Justice Department: Attorney General William P. Barr and FBI Director Christopher Wray Announce Significant Developments in the Investigation of the Naval Air Station Pensacola Shooting
MacRumors: FBI Reportedly Gained Access to iPhone Used by Mass Shooter in Florida After Apple Refused to Help
Associated Press: Pensacola gunman’s cellphones reveal meticulous planning for attack, FBI says
Task & Purpose: The FBI has evidence linking Al Qaeda to the NAS Pensacola shooting
Capital Gazette: Gunman accused of killing 3 sailors at Pensacola military base linked to al-Qaida, US official says
The Sun: Saudi student who shot dead 3 US sailors on Florida Naval Base ‘had been in contact with Al Qaeda’ in days before attack
Business Insider: The FBI found links to Al Qaeda after cracking the phones of the Saudi gunman who attacked a Florida naval base
AOL: Official: FBI finds link between Pensacola gunman, al-Qaida
GANNETT Syndication Service: Official: FBI finds link between NAS Pensacola gunman, al-Qaida
Newsweek: FBI Finds Florida Gunman Who Killed U.S. Sailors Was Linked to Al Qaeda After Breaking iPhone Encryption
Yahoo! News: FBI finds Al Qaeda link to Pensacola naval base shooting suspect: US official
Bloomberg: FBI Gets Into Pensacola Shooter’s iPhone, Finds an Al-Qaeda Tie
RT USA: Saudi pilot who went on gun rampage at Florida naval base linked to ‘Al-Qaeda operative’
The Crime Report: FBI Finds Link Between Pensacola Shooter, Al-Qaeda
Axios: FBI finds links between Pensacola gunman and Al Qaeda
Cult of Mac: FBI cracks alleged al-Qaida shooter’s iPhone without Apple’s help
USATODAY: Feds connect al Qaeda contacts to deadly Pensacola Naval Air Station shooting
AppleInsider: FBI breaks iPhone security to uncover Pensacola shooter & Al Qaeda link
NBCNews: FBI: Pensacola gunman prodded by al Qaeda to attack
Wired: The FBI Backs Down Against Apple—Again
The Register – Security: Attorney General: We didn’t need Apple to crack terrorist’s iPhones – tho we still want iGiant to do it in future
Cyberscoop: U.S. officials say they’ve cracked Pensacola shooter’s iPhones, blast Apple
CNET: FBI slams ‘Apple problem’ as it unlocks Pensacola shooter’s iPhones – CNET
News : NPR: FBI: New iPhone Evidence Shows Pensacola Shooter Had Ties To Al-Qaida
iDownloadBlog.com: The FBI has reportedly bypassed the security on the Pensacola mass shooter’s iPhone
Fortune: FBI: “We received effectively no help from Apple” in accessing Pensacola Shooter’s iPhones
WCCFtech: FBI Hacks Florida Shooter’s iPhones without Apple’s Help & Finds al Qaeda Link
ZDNet Security: FBI criticizes Apple for not helping crack Pensacola shooter’s iPhones
AppleInsider: Apple rejects ‘false claims’ by Justice Department regarding Pensacola investigation
iMore: Apple denies “false claims” by Justice Department over Pensacola attack
Cult of Mac: FBI attacks Apple for ‘no help’ unlocking Florida attacker’s iPhone; Apple rejects ‘false’ claims
Patently Apple: DOJ and FBI described crucial data found on the Pensacola Terrorist’s iPhones today in a news Conference, without Apple’s Assistance
Business Insider: The FBI found links to Al Qaeda after cracking the phones of the Saudi gunman who attacked a Florida naval base
The Sun: Saudi student who shot dead 3 US sailors on Florida Naval Base ‘had been in contact with Al Qaeda’ in days before attack
BuzzFeed News: The Pensacola Naval Base Shooter Had Longtime “Significant Ties” To Al-Qaeda
Newsweek: FBI Finds Florida Gunman Who Killed U.S. Sailors Was Linked to Al Qaeda After Breaking iPhone Encryption
iDownloadBlog.com: The FBI has reportedly bypassed the security on the Pensacola mass shooter’s iPhone
Appleosophy: Apple Fires Back at FBI and Attorney General William Barr Regarding Florida Shooter’s iPhone
MacRumors: FBI Reportedly Gained Access to iPhone Used by Mass Shooter in Florida After Apple Refused to Help
Task & Purpose: The FBI has evidence linking Al Qaeda to the NAS Pensacola shooting
MacRumors: Apple Calls FBI Comments on Lack of Help Unlocking Florida Shooter’s iPhone an ‘Excuse to Weaken Encryption’
SlashGear » security: Apple blasts Barr over iPhone lock “false claims” in Pensacola shooter case
Homeland Security Today: FBI: Pensacola Shooter Tied to AQAP Before Coming to the U.S., Discussed Attack
Zero Hedge: FBI Cracks Into Pensacola Shooter’s iPhone, Find “Significant Ties” To Al Qaeda
CBSNews.com: Saudi shooter in Florida air base attack had ties to al Qaeda
TechSpot: Officials still want backdoor into cellphones after cracking two iPhones without help
Yahoo! News: U.S. Supreme Court heaps more damages on Sudan in embassy bombing cases
iPhone Hacks: FBI Has Reportedly Unlocked One of the iPhones Used by Mass Shooter in Florida Last Year
The Mac Observer: FBI Bypasses Encryption on Pensacola Attacker’s iPhones
Cult of Mac: FBI cracks alleged al-Qaida shooter’s iPhone without Apple’s help
The Guardian: Pensacola gunman’s cellphones reveal meticulous planning for attack, FBI says
UPI.com: FBI: Agents unlocked phones to tie Pensacola gunman Mohammed Saeed Alshamrani to al-Qaida
TIME: Gunman in Deadly Pensacola Military Base Attack Linked to al-Qaida, FBI Says
Ars Technica: iPhone crypto hid al-Qaida link to naval base shooting, AG fumes
USATODAY: Feds connect al Qaeda contacts to deadly Pensacola Naval Air Station shooting
New York Post: FBI found al Qaeda’s link to Pensacola shooter through iPhones
AppleInsider: FBI breaks iPhone security to uncover Pensacola shooter & Al Qaeda link [u]
The Huffington Post : FBI Says It Found Links Between Pensacola Gunman And Al-Qaeda
Capital Gazette: Gunman accused of killing 3 sailors at Pensacola military base linked to al-Qaida, US official says
Stars and Stripes: FBI: Shooter at Naval Air Station Pensacola had link to al-Qaida
TIME: Gunman in Deadly Pensacola Military Base Attack Linked to al-Qaida, FBI Says
Ars Technica: iPhone crypto hid al-Qaida link to naval base shooting, AG fumes
Heavy.com: Pensacola, Florida Gunman Mohammed Alshamrani Link to Al-Qaida Found
Engadget: AG Barr seeks ‘legislative solution’ to make companies unlock phones
Daily Dot: FBI unlocks Pensacola shooter’s iPhone despite Apple’s opposition
Multichannel: AG Barr Hammers Apple in Terrorism Case Announcement
Vox: Why Attorney General Bill Barr is mad at Apple
Heavy.com: Pensacola, Florida Gunman Mohammed Alshamrani Link to Al-Qaida Found
POLITICO: Pensacola gunman was working with al Qaeda, FBI finds
USNI News: FBI Says Unlocked iPhone Messages Link NAS Pensacola Shooter to Al Qaeda; AG Barr Says Incident was ‘Act of Terrorism’
Input: FBI breaks into Pensacola shooter’s iPhone after six months, revealing al Qaeda links
TribLIVE: FBI: Shooter at Pensacola military base linked to al-Qaida
emptywheel: Bill Barr and Chris Wray Schedule a Press Conference to Admit Trump Let an Al Qaeda Terrorist onto Our Military Base
PhoneArena: Who is lying, Apple or Attorney General William Barr?
Channel News Asia: FBI phone probe links al Qaeda to Saudi who killed 3 at Florida base
RT USA: Saudi pilot who went on gun rampage at Florida naval base linked to ‘Al-Qaeda operative’
Algemeiner.com: FBI Phone Probe Links Al Qaeda to Saudi Shooter Who Killed Three at Florida Navy Base
MacDailyNews: Apple rejects ‘false claims’ by Justice Department regarding Islamic terrorist attack in Pensacola
Reuters: U.S.: FBI phone probe links al Qaeda to Saudi who killed three at Florida base, Barr says
France 24: FBI says al Qaeda linked to Saudi shooter at Florida naval base
The New Daily: FBI links al-Qaeda to US base shooting
MacDailyNews: FBI cracks iPhone encryption, links al Qaeda to Islamic terrorist who killed three at Florida naval base
MacDailyNews: Apple rejects ‘false claims’ by Justice Department regarding Islamic terrorist attack in Pensacola
CNN.com: FBI delivers to America a chilling reminder about al Qaeda
Input: FBI breaks into Pensacola shooter’s iPhone after six months, revealing al Qaeda links
The Verge: The FBI successfully broke into a gunman’s iPhone, but it’s still very angry at Apple
Washington Post: Attorney general and FBI director blast Apple after tracing Pensacola gunman’s phone to al-Qaeda
New York Times: F.B.I. Finds Links Between Pensacola Gunman and Al Qaeda

@dnvolz: Sound familiar? FBI gets into iPhone belonging to dead terrorist that they said months ago they could not unlock.
@adamgoldmanNYT: The F.B.I. found the gunman, a Saudi Air Force cadet training with the American military, had communicated with a Qaeda operative who had encouraged the attacks
@kevincollier: "Breaking encryption" on an iPhone has a specific meaning and enormous consequences. I really hope those making that claim today wouldn't do so without backing it up.
@nakashimae: FBI Director Chris Wray: "We received effectively no help from Apple" in accessing the Pensacola shooter's iPhones.
@zackwhittaker: Apple in January: "The FBI only notified us on January 6 that they needed additional assistance—a month after the attack occurred. Only then did we learn about the existence of a second iPhone associated with the investigation and the FBI's inability to access either iPhone."
@zackwhittaker: Apple also said at the time it responded to six more legal requests for information between Dec. 7 and Dec. 14, and that it provided iCloud backups, account information and transactional data for multiple accounts.
@zackwhittaker: It's not that Apple provided "effectively no help" to the FBI. It's that Apple didn't acquiesce to the wants and wishes of the government and backdoor its own devices. We almost had an entire court case about this — but the FBI bottled it.
@iblametom: New - The FBI hacks into the iPhones of Pensacola shooter, finds links to Al Qaeda. But director Chris Wray still says Apple should've helped and its delays caused real problems.
@karaswisher: Looks like the government can do what it said it could not do
@macrumors: FBI Reportedly Gained Access to iPhone Used by Mass Shooter in Florida After Apple Refused to Help https://macrumors.com/2020/05/18/fbi-reportedly-accessed-alshamrani-iphone/ by @rsgnl
@zackwhittaker: ACLU statement is extremely Nail polish "The boy who cried wolf has nothing on the agency that cried encryption."
@iblametom: Source at FBI told me they chose the wrong battle with Pensacola too... they’ve been able to get into iPhone 5 and 7 for some time.
@dotmudge: Two things: 1 - AQAP (Al Qaeda Arabian Peninsula) linked terrorist attack on US soil, and it barely makes the news cycle 2 - investigations show accessing iPhones on one-off’s continues to negate necessity to drop user crypto protections at large
@DevlinBarrett: Attorney general and FBI director crank up their encryption fight with Apple, blasting the company after agents traced data on a Pensacola gunman’s phone to al-Qaeda
@ahmed: FBI says Saudi shooter at Pensacola base was in touch with al-Qaeda leaders, accuses Apple of wasting “valuable time” by refusing to unlock his phone to investigators


May 21, 2020
Tim Hardwick / MacRumors

Tim Hardwick / MacRumors  
One Day After the Release of iOS 13.5 the Team Behind Unc0ver iOS Jailbreaking Tool Ready to Release Its Update

Apple released iOS 13.5 yesterday, but the team behind the “unc0ver” jailbreaking tool for iOS has already announced an upcoming version of its software that can patch “every signed iOS version on every device.” The team is using a zero-day kernel vulnerability by Pwn20wnd, a famous iOS hacker who is behind two other noted iOS jailbreaks, checkra1n and checkm8. The unc0ver team didn’t say when the updated tool would be released, but final stability tests are currently being performed, according to their website.

Related: iDownloadblog, iMore, iPhone Hacks, Softpedia News, TechNadu, The Mac Observer, Softpedia News

Tweets:@unc0verTeam


April 22, 2020
Robert McMillan / Wall Street Journal

Robert McMillan / Wall Street Journal  
iPhone Zero-Day Flaw That Requires Only Specially Crafted Messages to Gain Phone Access Has Been Exploited for Two Years by Sophisticated Attackers, Researchers

In attacks that go back two years, iPhones have been exploited by sophisticated hackers who leveraged a zero-day flaw in the smartphone’s email software, according to digital security firm ZecOps. The hackers gained access to the phones by merely sending a specially crafted message, which triggers the attack when the phone’s email reader downloads the message. ZecOps wasn’t able to obtain the malware itself but based it determinations on the digital clues left after the attacks. The attacks were virtually undetectable due to the sophistication of the attackers and Apple’s efforts to make investigating the device difficult. The researchers were able to identify six targets of these attacks including employees of a telecommunications company in Japan, a large North American firm, technology companies in Saudi Arabia, and Israel, a European journalist and an individual in Germany. Apple has patched the mail bug in a test version of its iPhone operating system, but the fix hasn’t yet been widely released through an official IOS update.

Related: Motherboard, iMore, Security Affairs, The Hacker News, ZDNet Security, AppleInsider, iPhone Hacks, Cult of Mac, Reuters: Top News, Tech Insider, Cybersecurity Insiders, Inc.com, Engadget, The Register – Security, MobileSyrup.com, Tenable Blog, Cyber Kendra, MacRumors, CNET, PhoneArena, Security News | Tech Times, HotHardware.com, TechCrunch, Apple InsideriMore, iPhone Hacks, Threatpost, iDownloadblog, PYMNTS.com, Fortune, 9to5Mac, Malwarebytes Unpacked, Malwarebytes Unpacked, SiliconANGLE, MacDailyNews, ZDNet Security, Law & Disorder – Ars Technica, The Hill: Cybersecurity, The Inquisitr News, Mashable, Reuters, iTnews – Security, Patently Apple, Japan Today, Wall Street Journal, ARN, The Verge, VentureBeat, Japan Times, Fortune, Motley Fool, The Hacker News, MobileSyrup.com, Security Affairs, Jerusalem Post

Tweets:@ZecOps @kennwhite @AntivirusLV

Motherboard: Researchers Say They Caught an iPhone Zero-Day Hack in the Wild
iMore: An iOS vulnerability may have been exploited to spy on Uyghur population
Security Affairs: A new Insomnia iOS exploit used to spy on China’s Uyghur minority
The Hacker News: New iPhone Hack is Being Exploited to Spy Uyghurs Muslims in China
ZDNet Security: Apple investigating report of a new iOS exploit being used in the wild
AppleInsider: Two Apple Mail vulnerabilities being used to target iPhone, iPad users
iPhone Hacks: Apple Patches Mail App Related Security Vulnerabilities in Latest iOS 13.4.5 Beta
Cult of Mac: iPhone vulnerability let hackers attack devices through Mail app
Reuters: Top News: Flaw in iPhone, iPads may have allowed hackers to steal data for years
Tech Insider: Hackers may be attacking iPhones by sending emails that can infect phones without you even opening the email (AAPL)
Cybersecurity Insiders: Apple iPhones are vulnerable to Email hacks
Inc.com: Apple Mail Bug Lets Hackers Control Your iPhone
Engadget: Apple Mail for iPhone may be vulnerable to malware attacks
The Register – Security: Zero-click, zero-day flaws in iOS Mail ‘exploited to hijack’ VIP smartphones. Apple rushes out beta patch
MobileSyrup.com: Security researchers uncovered vulnerabilities in Apple’s default Mail app on iOS
Tenable Blog: Multiple Zero-Day Vulnerabilities in iOS Mail App Exploited in the Wild
Cyber Kendra: Hack iPhone With Just a Single Mail—Zero-day Bug
MacRumors: Apple Patches Two Security Vulnerabilities Impacting Mail App in iOS 13.4.5 Beta
CNET: Mail app on iPhone may be vulnerable to email hack, report says
PhoneArena: “Scary” vulnerability found in the iPhone/iPad Mail app; Apple says patch is coming soon
Security News | Tech Times: Disable iPhone Mail App Now! Security Alerts Users on New Apple Scam That Steals Data
HotHardware.com: Apple iPhone Mail App Zero-Day Security Exploit Potentially Exposed Private Data Of Millions
TechCrunch: A new iPhone email security bug may let hackers steal private data
Apple Insider : Two Apple Mail vulnerabilities being used to target iPhone, iPad users
iMore: A new security vulnerability has been discovered in the default Mail app
iPhone Hacks: Apple Patches Mail App Related Security Vulnerabilities in Latest iOS 13.4.5 Beta
Threatpost : Apple Patches Two iOS Zero-Days Abused for Years
iDownloadblog : Researchers discover a pair of security vulnerabilities in the iOS Mail app, Apple is working on a patch
PYMNTS.com: Apple iOS May Be Vulnerable To Zero-Click Email Hack
Fortune: Apple iPhones, iPads are vulnerable to hackers through flaws in email app
9to5Mac : Report: iPhone Mail app zero-day exploits found in the wild, Apple has fix coming in next public iOS release
Malwarebytes Unpacked: iOS Mail bug allows remote zero-click attacks
SiliconANGLE: Hackers spotted using new iPhone vulnerability in email-borne cyberattacks
MacDailyNews: Apple investigating report of a new iOS email exploit being used in the wild
ZDNet Security: Apple investigating report of a new iOS exploit being used in the wild
Law & Disorder – Ars Technica: A critical iPhone and iPad bug that lurked for 8 years may be under active attack
The Hill: Cybersecurity: Vulnerabilities on iPhones, iPads allowed hackers to access data for years: report
The Inquisitr News: Flaws In iPhone Design Have Allowed Hackers To Steal Information For Years
Mashable: Newly disclosed iPhone vulnerability means emails are an even bigger risk
Reuters: Flaw in iPhone, iPads may have allowed hackers to steal data for years
iTnews – Security: Flaw in iPhone, iPads may have allowed hackers to steal data for years
Patently Apple: Apple is planning to fix a Security Flaw that was first discovered by a former Israeli Defense Force security researcher
Japan Today: Flaw in iPhone, iPads may have allowed hackers to steal data for years
Wall Street Journal: Apple iPhone May Be Vulnerable to Email Hack
ARN: Apple moves to fix flaw affecting up to 500M iPhones
The Verge: Apple’s default Mail app for the iPhone has a severe security flaw, researchers claim
VentureBeat: Researchers find actively exploited iOS flaws that were open for years
Japan Times: Apple iPhones and iPads vulnerable to hackers by flaws in mail app
Fortune: Apple iPhones, iPads are vulnerable to hackers through flaws in email app
Motley Fool: iPhone Flaw Allowed Hackers to Steal Data for Years
The Hacker News: Zero-Day Warning: It’s Possible to Hack iPhones Just by Sending Emails
MobileSyrup.com: Security researchers uncovered vulnerabilities in Apple’s default Mail app on iOS
Security Affairs: Hacking Apple iPhones and iPads by sending emails to the victims
Jerusalem Post: Israeli security company finds vulnerable flaw in iPhones, iPads

@ZecOps: Hackers may be attacking iPhones by exploiting a previously unknown flaw in the smartphone’s email software, according to digital-security company @ZecOps https://wsj.com/articles/apple-iphone-may-be-vulnerable-to-email-hack-11587556802 via @WSJ
@kennwhite: MacRumors Apple Patches Two Security Vulnerabilities Impacting Mail App in iOS 13.4.5 Beta San Francisco-based cybersecurity company ZecOps today announced that it has uncovered two zero-day security vulnerabilities affecting Apple's stock Mail app on iOS devices, as noted by Motherbo + Related: CERT-EU , CERT-EU , The Register - Security, The Register - Security, Techmeme Chatter (@TechmemeChatter) | Twitter, Techmeme Chatter (@TechmemeChatter) | Twitter, MobileSyrup.com, Tenable Blog, Cyber Kendra, Techmeme Chatter (@TechmemeChatter) | Twitter, GeekWire, GeekWire, CERT-EU , MacRumors, CERT-EU , CNET, CERT-EU , CERT-EU , CERT-EU , CERT-EU , CERT-EU , PhoneArena, PhoneArena, Security News | Tech Times, Security News | Tech Times, HotHardware.com, HotHardware.com, CERT-EU , TechCrunch, TechCrunch, CERT-EU , iMore, CERT-EU , iMore, CERT-EU , CERT-EU , iPhone Hacks, iPhone Hacks, iPhone Hacks, iPhone Hacks, CERT-EU , CERT-EU , CERT-EU , CERT-EU , CERT-EU , CERT-EU , PYMNTS.com, Fortune, GeekWire, CERT-EU , CERT-EU , CERT-EU , CERT-EU , PYMNTS.com, Malwarebytes Unpacked, Malwarebytes Unpacked, Malwarebytes Unpacked, Malwarebytes Unpacked Related: CERT-EU : Zero-click, zero-day flaw in iOS Mail ‘exploited to hijack’ VIP smartphones. Apple rushes out beta patch CERT-EU : Zero-click, zero-day flaw in iOS Mail 'exploited to hijack' VIP smartphones. Apple rushes out beta patch The Register - Security: Zero-click, zero-day flaws in iOS Mail 'exploited to hijack' VIP smartphones. Apple rushes out beta patch The Register - Security: Zero-click, zero-day flaws in iOS Mail 'exploited to hijack' VIP smartphones. Apple rushes out beta patch Techmeme Chatter (@TechmemeChatter) | Twitter: @kennwhite: - beta patch released by Apple- attack is fairly advanced, but actual exploit appears to be POC-grade - multiple delivery methods including large mail but also multi-part & rich text format hacks- full report, with IOCs and FAQ from @ZecOps:ht Techmeme Chatter (@TechmemeChatter) | Twitter: @kennwhite: - beta patch released by Apple- attack is fairly advanced, but actual exploit appears to be POC-grade - multiple delivery methods including large mail but also multi-part & rich text format hacks- full report, with IOCs and FAQ from @ZecOps:ht MobileSyrup.com: Security researchers uncovered vulnerabilities in Apple’s default Mail app on iOS Tenable Blog: Multiple Zero-Day Vulnerabilities in iOS Mail App Exploited in the Wild Cyber Kendra: Hack iPhone With Just a Single Mail—Zero-day Bug Techmeme Chatter (@TechmemeChatter) | Twitter: @TheRegister: Zero-click, zero-day flaw in iOS Mail exploited to hijack VIP smartphones. Apple rushes out beta patch https://t.co/r7OWryABPq GeekWire: Zero-click, zero-day flaws in iOS Mail ‘exploited to hijack’ VIP smartphones. Apple rushes out beta patch GeekWire: Zero-click, zero-day flaw in iOS Mail ‘exploited to hijack’ VIP smartphones. Apple rushes out beta patch CERT-EU : Apple Patches Two Security Vulnerabilities Impacting Mail App in iOS 13.4.5 Beta MacRumors: Apple Patches Two Security Vulnerabilities Impacting Mail App in iOS 13.4.5 Beta CERT-EU : Apple Patches Two Security Vulnerabilities Impacting Mail App in iOS 13.4.5 Beta CNET: Mail app on iPhone may be vulnerable to email hack, report says CERT-EU : Apple iPhones are vulnerable to Email hacks CERT-EU : Apple iPhones are vulnerable to Email hacks CERT-EU : Apple iPhones are vulnerable to Email hacks CERT-EU : Apple iPhones are vulnerable to Email hacks CERT-EU : Two Apple Mail vulnerabilities being used to target iPhone, iPad users PhoneArena: "Scary" vulnerability found in the iPhone/iPad Mail app; Apple says patch is coming soon PhoneArena: "Scary" vulnerability found in the iPhone/iPad Mail app; Apple says patch is coming soon Security News | Tech Times: Disable iPhone Mail App Now! Security Alerts Users on New Apple Scam That Steals Data Security News | Tech Times: Disable iPhone Mail App Now! Security Alerts Users on New Apple Scam That Steals Data HotHardware.com: Apple iPhone Mail App Zero-Day Security Exploit Potentially Exposed Private Data Of Millions HotHardware.com: Apple iPhone Mail App Zero-Day Security Exploit Potentially Exposed Private Data Of Millions CERT-EU : iPhone's Mail app has two severe "zero-click" vulnerabilities that have existed for 8 years TechCrunch: A new iPhone email security bug may let hackers steal private data TechCrunch: A new iPhone email security bug may let hackers steal private data CERT-EU : Two Apple Mail vulnerabilities being used to target iPhone, iPad users iMore: A new security vulnerability has been discovered in the default Mail app CERT-EU : A new security vulnerability has been discovered in the default Mail app iMore: A new security vulnerability has been discovered in the default Mail app CERT-EU : Session hijacking & malware injection vulnerabilities found in Apple Mail app and AirShare affecting iPhone, iPad & Mac CERT-EU : Session hijacking & malware injection vulnerabilities found in Apple Mail app and AirShare affecting iPhone, iPad & Mac iPhone Hacks: Apple Patches Mail App Related Security Vulnerabilities in Latest iOS 13.4.5 Beta iPhone Hacks: Apple Patches Mail App Related Security Vulnerabilities in Latest iOS 13.4.5 Beta iPhone Hacks: Apple Patches Mail App Related Security Vulnerabilities in Latest iOS 13.4.5 Beta iPhone Hacks: Apple Patches Mail App Related Security Vulnerabilities in Latest iOS 13.4.5 Beta CERT-EU : Apple Patches Two iOS Zero-Days Abused for Years CERT-EU : Researchers discover a pair of security vulnerabilities in the iOS Mail app, Apple is working on a patch CERT-EU : Researchers discover a pair of security vulnerabilities in the iOS Mail app, Apple is working on a patch CERT-EU : Two Apple Mail vulnerabilities being used to target iPhone, iPad users CERT-EU : Apple Mail Vulnerabilities Found Could Lead To Attacks On iPhone Users CERT-EU : Apple Mail Vulnerabilities Found Could Lead To Attacks On iPhone Users PYMNTS.com: Apple iOS May Be Vulnerable To Zero-Click Email Hack Fortune: Apple iPhones, iPads are vulnerable to hackers through flaws in email app GeekWire: iOS Mail bug allows remote zero-click attacks CERT-EU : Report: iPhone Mail app zero-day exploits found in the wild, Apple has fix coming in next public iOS release CERT-EU : Report: iPhone Mail app zero-day exploits found in the wild, Apple has fix coming in next public iOS release CERT-EU : Hack iPhone With Just a Single Mail—Zero-day Bug CERT-EU : Hack iPhone With Just a Single Mail—Zero-day Bug PYMNTS.com: Apple iOS May Be Vulnerable To Zero-Click Email Hack Malwarebytes Unpacked: iOS Mail bug allows remote zero-click attacks Malwarebytes Unpacked: iOS Mail bug allows remote zero-click attacks Malwarebytes Unpacked: iOS Mail bug allows remote zero-click attacks Malwarebytes Unpacked: iOS Mail bug allows remote zero-click attacks
@AntivirusLV: Researchers are reporting two Apple #iOS 0-day security #vulnerabilities affecting its Mail app on iPhones and iPads. Impacted are iOS 6 and iOS 13.4.1. Apple patched both vulnerabilities in iOS 13.4.5 beta. A final release of iOS 13.4.5 is expected soon.


May 21, 2020
Russell Brandom / The Verge

Russell Brandom / The Verge  
Apple and Google Roll Out Support for Their Coronavirus Exposure Notification System, Three U.S. States, Twenty-Two Countries Sign Up

In a move that makes digital contact tracing one step closer to reality in the U.S. and other countries, Apple and Google rolled out support for their coronavirus exposure notification system, as implemented in an update to iOS and Android. The joint system uses a complex BLE Beacon protocol to allow users to track recent exposures to other users who have tested positive for COVID-19. Both tech giants pledge not to monetize the data and to shut down the system once the tracking is no longer needed. Three U.S. states have come forward to announce their own notification systems based on the app – Alabama, South Carolina, and North Dakota. The companies say 22 countries have separately received access to the API, although it declined to name specific nations.

Related: Business Insider, iMore, Android Central , Mic, Fortune, Roll Call, Future of Privacy Forum, Android Authority, iPhone Hacks, ET news, Tech Insider, WRAL Tech Wire, Gulf News Technology, LA Daily News, TIME, POLITICO, MacRumors, MacDailyNews, TechCrunch, xda-developers, Vox, MacRumors, iMore, Pocket-lint, Input, MacStories, Patently Apple, MacDailyNews, Gizmodo Australia, Slashdot, BBC, The Guardian, MacDailyNews, TechCrunch, POLITICO, Fortune, LA Daily News, TIME, IT News, iMore, channelnews, ZDNetMacRumors, MacDailyNews, Techdirt, xda-developers, Apple Newsroom, MacStories, Android Authority, Pocket-lint, Techradar, Vox

Tweets:@carolineha_ @lukOlejnik @LeoKelion @geoffreyfowler

Business Insider: Apple and Google are making their COVID-19 exposure tech available to public health agencies, which means you’ll soon have access to contact tracing apps (GOOG, GOOGL, APPL)
iMore: Apple and Google officially launch Exposure Notifications to fight COVID-19
Android Central : Apple and Google officially launch Exposure Notifications to fight COVID-19
Mic: The Trump administration demanded the U.N. remove abortion access from its pandemic response plan
Fortune: Apple, Google’s COVID-19 tracing tool is one big step closer to being put to use
Roll Call: Apple, Google release template for COVID-19 contact tracing apps
Future of Privacy Forum: FPF CEO: Will I Install an Exposure Notification App? Thoughts on the Apple-Google API
Android Authority: Google and Apple announce exposure notification API (Update: Now public)
iPhone Hacks: Apple Releases iOS 13.5 and iPadOS 13.5 with Exposure Notification API for Contact Tracing Apps
ET news: ‘Failed mishmash’ of privacy protections insufficient for NHS app users
Tech Insider: Apple and Google are making their COVID-19 exposure tech available to public health agencies, which means you’ll soon have access to contact tracing apps (GOOG, GOOGL, APPL)
WRAL Tech Wire: Apple, Google release technology for pandemic apps tracking COVID-19 exposure
Gulf News Technology: Apple, Google release technology for COVID-19 apps
LA Daily News: Apple, Google release technology for pandemic apps
TIME: Apple and Google Release Smartphone Technology to Notify People of Possible Coronavirus Exposure
POLITICO: Apple, Google release coronavirus-tracing software — but will it help?
MacRumors: Apple and Google Launch COVID-19 Exposure Notification API, Over 20 Countries Have Requested and Received Access
MacDailyNews: Apple TV+ faces dual challenges
TechCrunch: Apple and Google launch exposure notification API, enabling public health authorities to release apps
xda-developers: [Update 6: API Live] Google and Apple announce the Contact Tracing API and Bluetooth spec to warn users of COVID-19
Vox: Apple and Google roll out their new exposure notification tool. Interest seems limited.
MacRumors: Apple Releases iOS and iPadOS 13.5 With Exposure Notification API, Face ID Mask Updates, Group FaceTime Changes and More
iMore: Apple releases iOS 13.5 with exposure notification API, Face ID updates
Pocket-lint: What’s new in iOS 13.5? COVID-19 Exposure Notification API and more
Input: iOS 13.5 is here with smarter Face ID unlock when you’re wearing a face mask
MacStories: Apple Releases iOS 13.5 with COVID-19 Exposure Notifications, Face ID Bypass for Masks, FaceTime Setting, and Apple Music Stories Sharing
Patently Apple: A Bitter Ex-Apple Sub-Contractor in Europe is demanding that action be taken against Apple for basically ‘wiretapping entire populations’ via Siri
MacDailyNews: Siri whistleblower goes public over ‘lack of action,’ says Apple should face consequences
Gizmodo Australia: Siri Whistleblower Goes Public To Protest Lack Of Consequences For Apple
Slashdot: Apple Whistleblower Goes Public Over ‘Lack of Action’
BBC: Apple and Google release marks ‘watershed moment’ for contact-tracing apps
The Guardian: Apple and Google release phone technology to notify users of coronavirus exposure
MacDailyNews: How to opt out of COVID-19 contact tracing in iOS 13.5
TechCrunch: Apple and Google launch exposure notification API, enabling public health authorities to release apps
POLITICO: Apple, Google release coronavirus-tracing software — but will it help?
Fortune: Apple, Google’s COVID-19 tracing tool is one big step closer to being put to use
LA Daily News: Apple, Google release technology for pandemic apps
TIME: Apple and Google Release Smartphone Technology to Notify People of Possible Coronavirus Exposure
WRAL Tech Wire: Apple, Google release technology for pandemic apps tracking COVID-19 exposure
LA Daily News: Apple, Google release technology for pandemic apps
TIME: Apple and Google Release Smartphone Technology to Notify People of Possible Coronavirus Exposure
IT News : Apple-Google contact tracing tech draws interest in 23 countries, some hedge bets
iMore: Apple and Google officially launch Exposure Notifications to fight COVID-19
channelnews: Could Apple & Google’s COVID-19 Tracing Tech Make COVIDSafe Better?
ZDNet: Apple releases iOS 13.5 with COVID-19 contact tracing feature, Face ID improvements
MacRumors: Apple and Google Launch COVID-19 Exposure Notification API, Over 20 Countries Have Requested and Received Access
MacDailyNews: Apple TV+ faces dual challenges
Techdirt: The Case For Contact Tracing Apps Built On Apple And Google’s Exposure Notification System
xda-developers: [Update 6: API Live] Google and Apple announce the Contact Tracing API and Bluetooth spec to warn users of COVID-19
Apple Newsroom: iPhone SE: A powerful new smartphone in a popular design
MacStories: Apple Releases iOS 13.5 with COVID-19 Exposure Notifications, Face ID Bypass for Masks, FaceTime Setting, and Apple Music Stories Sharing
Android Authority: Google and Apple announce exposure notification API (Update: Now public)
Pocket-lint: What’s new in iOS 13.5? COVID-19 Exposure Notification API and more
iMore: Apple releases iPadOS 13.5
Pocket-lint: What’s new in iOS 13.5? COVID-19 Exposure Notification API and more
Techradar: iOS 13.5 is here – why you should download it right away
Vox: Apple and Google roll out their new exposure notification tool. Interest seems limited.

@carolineha_: By the way, Apple + Google's API — the backbone that public health authorities can use to build exposure notification apps — went out today. The companies said today that "a number" of US states and 22 countries on 5 continents have requested access
@lukOlejnik: Here's how Google Play will verify that the contact tracing apps are actually from "national health authorities". Seems the system may behave differently if there's a risk of "high risk of transmission". What does it mean? I don't know! #COVID?19 https://support.google.com/googleplay/and
@LeoKelion: Apple and Google have delivered - now public health authorities get to see if there's real advantage in adopting their Covid-19 contact tracing model. But there may be some teething issues along the way
@geoffreyfowler: Apple and Google’s coronavirus exposure software is here, along with iOS 13.5 Now we’re waiting for apps that that use it. So far, we just know 3 states saying they’re going to try: Alabama, South Carolina and North Dakota.


April 13, 2020
Rowena Mason / The Guardian

Rowena Mason / The Guardian   
UK Health Ministry Will Soon Launch Its Own Coronavirus Contact Tracing App as Concerns Swirl Over Privacy and Security of Such Apps

As security and privacy concerns swirl around the introduction of coronavirus contact tracing apps, the UK public will soon be able to find out if they may have been in the vicinity of people unwell with coronavirus via a new contact-tracing app. The NHS app, developed by NHSX, the health service’s digital transformation arm, would allow people to report their symptoms. Then the app would anonymously alert other app users that had been in contact with that person in recent days. About 60% of the population would have to sign up for the app for it to be effective.  Despite fears over the privacy of the app’s data, UK health minister Matt Hancock said the data will be handled according to the highest ethical and security standards, and would only be used for NHS care and research.

Related: IT World, Techradar, The Loop, eTeknix, CNBC, Cyware News, Telecomlive.com, Inverse, Android Authority, CNET, 9to5Mac, DIGITIMES: IT news from Asia, MacRumors, Android Central, TechNadu, Fortune, MacDailyNews, Schneier on Security, Computerworld Security, O’Grady’s PowerPage, MacRumors, Cult of Mac, Forbes, Politico, BBC News

Tweets:@fs0c131y @jatorre @schneierblog @EHRC

IT World : Cyber Security Today – COVID-19 hiring and sob story scams, Apple and Google partner on contact tracing, cops make arrests and more
Techradar: The UK government is working on a Covid-19 tracking app with Apple and Google
The Loop: UK nods to Apple/Google coronavirus API with contact tracing app plans
eTeknix: UK Confirms Plans For Coronavirus Tracing App
CNBC: Apps collecting data to help stop the virus spread must limit sharing of information, cybersecurity expert says
Telecomlive.com: Apple, Google join hands to help fight coronavirus
Inverse: Covid-19: how Apple and Google’s system could help end lockdowns
Android Authority: Google-Apple partnership may be tech-limited, and more tech news today
CNET: Tech isn’t solution to COVID-19, says Singapore director of contact tracing app
9to5Mac: Here’s how Apple and Google’s COVID-19 contact tracing API could be implemented to help reopen society
DIGITIMES: IT news from Asia: Apple and Google partner on coronavirus contact tracing technology
MacRumors: UK to Use Apple-Google API in NHS Contact Tracing App
Android Central : The UK’s NHS will add Apple and Google’s coronavirus tracing API to its app
iMore: The UK’s NHS will add Apple and Google’s coronavirus tracing API to its app
TechNadu: UK Will Be the First to Use the Google and Apple Coronavirus Tracing App
Fortune: The problem with Google and Apple’s plan to trace coronavirus via your phone
MacDailyNews: What’s wrong with the Apple-Google COVID-19 contact tracing scheme
Schneier on Security: Contact Tracing COVID-19 Infections via Smartphone Apps
Computerworld Security: Everything we know about the Google/Apple COVID-19 contact tracing tech
O’Grady’s PowerPage: Apple to partner with Google on Coronavirus contact tracing project
MacRumors: UK to Use Apple-Google API in NHS Contact Tracing App
Cult of Mac: UK’s National Health Service to use Apple-Google API in contact tracing app
Forbes: COVID-19: U.K. Government Unveils NHS Contact-Tracing Phone App As Next Step In Fighting Disease
Politico: The security issues with the Apple/Google virus tracking project
BBC News: Coronavirus: UK confirms plan for its own contact tracing app

@fs0c131y: 14/ The Apple / Google API has an other disadvantage. If a government want to publish a functional contact tracing app he is force to use this API. As a politician, when you spend your time talking about the digital sovereignty, about how bad are the GAFA, it's an issue.
@jatorre: I am getting scared of all these cryptographers now saving the world with contact tracing without privacy issues... This is going to delay solutions a lot by adding noise to decision makers. This blog post summarizes it great https://lightbluetouchpaper.org/2020/04/12/contact-tracing-in-the-real-world/
@schneierblog: Contact Tracing COVID-19 Infections via Smartphone Apps
@EHRC: “We support the use of technology to save lives during the pandemic. At the same time it must have the appropriate safeguards in place to protect people’s privacy and data.” We are ready to advise the NHS on its new Covid-19 contact tracing app. More: http://socsi.in/VrLA2


April 30, 2020
Darrell Etherington / TechCrunch

Darrell Etherington / TechCrunch  
Apple and Google Release First Version of Their Coronavirus Exposure Notification API to Developers, More Details Coming Tomorrow

Apple and Google have released the first version of their coronavirus exposure notification API, which they previously called the contact tracing API, which is a developer-focused version that is a seed of the API in development. This release is a test release intended to provide the opportunity for development and feedback in advance of the API’s public release in mid-May. The two tech giants will be providing more details on Friday about the API and its release, including sample code.

Related: BGR, WonderHowTo, iClarified, WCCFtech, MacRumors, Trusted Reviews, The Apple Post, MacDailyNews, MacRumors, Input, The Verge, iMore, iPhone Hacks, Vox


March 25, 2020
Catalin Cimpanu / ZDNet

Catalin Cimpanu / ZDNet  
Apple Now Blocks All Third-Party Cookies by Default With the Release of Safari 13.1

Starting with the release of Safari 13.1 and through updates to the Intelligent Tracking Prevention (ITP) privacy feature, Apple now blocks all third-party cookies in Safari by default, thwarting the ability of online advertisers and analytics firms to use browser cookie files to track users as they visit different sites across the internet. Apple claims, however, that it was already blocking most third-party cookies anyway. Apple is following in the Tor browser footsteps to implement this privacy measure. Google’s Chrome v80 released in February supports third-party cookie blocking but won’t be fully rolled out to Chrome users until 2020.

Related: iPhone Hacks, The Verge, MacRumors, iMoreiMore, MacRumors, Gizmodo, iPhone Hacks, iPhone Hacks, iPhone Hacks, PhoneArena, BusinessLine – Home, fossBytesiMore, Techradar, Pocket-lint, Engadget, iMore, MacDailyNews, The Apple Post, Full Disclosure, Full Disclosure, Full Disclosure, The Register

Tweets:@1BlockerApp @johnwilander @johnwilander @johnwilander @johnwilander @johnwilander @johnwilander

iPhone Hacks: Safari browser adds Full Third-Party Cookie Blocking on iOS, iPadOS 13.4, macOS
The Verge: Apple updates Safari’s anti-tracking tech with full third-party cookie blocking
MacRumors: Safari in New Versions of iOS and macOS Includes Full Third-Party Cookie Blocking
iMore: Apple releases iPadOS 13.4 with trackpad and mouse support
iMore: Apple releases iOS 13.4 with iCloud Drive folder sharing
Gizmodo: Apple Will Now Let You Buy Apps for Mac and iOS as a Bundled Package
iPhone Hacks: Apple Releases iOS 13.4 and iPadOS 13.4 With iCloud Folder Sharing, Trackpad Support, More
iPhone Hacks: Apple Releases macOS 10.15.4 and tvOS 13.4
iPhone Hacks: Apple Releases watchOS 6.2 with IAP Support, Expands ECG Feature to More Countries
PhoneArena: The latest Safari will protect your privacy by blocking third-party cookies
BusinessLine – Home: Apple updates Safari browser to block third-party cookies
fossBytes: New Apple Privacy Feature Released 2 Years Before Google Promised It For Chrome
iMore: Apple beefs up web security and privacy in iOS 13.4
Techradar: Safari update delivers ‘significant improvement for privacy’
Pocket-lint: Safari now blocks all third party trackers, with Chrome only following in 2022
Engadget: Safari now blocks all third-party cookies by default
iMore: Apple releases iOS 13.4 with iCloud Drive folder sharing
MacDailyNews: Apple releases iOS 13.4
The Apple Post: Apple releases iOS 13.4 with iCloud Drive Folder Sharing, new Memoji, updated Mail app and more
Full Disclosure: APPLE-SA-2020-03-24-7 Xcode 11.4
Full Disclosure: APPLE-SA-2020-03-24-2 macOS Catalina 10.15.4, Security Update 2020-002 Mojave, Security Update 2020-002 High Sierra
Full Disclosure: APPLE-SA-2020-03-24-5 Safari 13.1
The Register – Security: Stuck inside with nothing to do? Apple fires out security fixes for iOS, macOS, wrist-puters… and something weird called iTunes for Windows

@1BlockerApp: Safari now fully blocks third-party cookies by default. This is a significant improvement for privacy since it disables login fingerprinting and brings other additional benefits.
@johnwilander: The long wait is over and the latest update to Safari's Intelligent Tracking Prevention is here: Full third-party cookie blocking and more https://webkit.org/blog/10218/full-third-party-cookie-blocking-and-more/ Safari users, welcome to the future and a safer web!
@johnwilander: This update takes several important steps to fight cross-site tracking and make it more safe to browse the web. First of all, it paves the way. We will report on our experiences of full third-party cookie blocking to the privacy groups in W3C to help other browsers take the leap.
@johnwilander: Second, full third-party cookie blocking removes statefulness in cookie blocking. There were many who raised concerns over ITP's future back in January. Hopefully, they'll now help spread the message that ITP is not only OK, it's leading the way.
@johnwilander: Third, full third-party cookie blocking fully disables login fingerprinting, a problem on the web described already 12 years ago. Without protection, trackers can figure out which websites you're logged in to and use it as a fingerprint. Not in Safari.
@johnwilander: Fourth, full third-party cookie blocking solves cross-site request forgeries. This is one of the web's original security vulnerabilities and discussed in communities like OWASP for well over a decade. Those vulnerabilities are now gone in Safari.
@johnwilander: Fifth, all script-writeable storage is now aligned with the 7-day expiry Safari already has for client-side cookies. Finally, delayed bounce tracking is now detected and dealt with just like regular bounce tracking. Stay safe everyone, and make sure to use a browser you trust.


Matthew Panzarino / TechCrunch

Matthew Panzarino / TechCrunch  
Apple Updates Privacy Policy for Apple Card to Share More Data With Financial Partner Goldman Sachs

Apple is updating its privacy policy for Apple Card to enable sharing more anonymized data with Goldman Sachs, its financial partner. The company says this move will make it better able to assign credit to new customers. Apple is changing the privacy policy for Apple Card with iOS to share a richer, but still anonymized, set of data with Goldman Sachs to create a new model that it says could expand credit availability to consumers. A fallback option for customers who do not want to opt into the Goldman Sachs data sharing initiative is for Apple to examine the user’s purchase history for Apple products. Apple will now also be adding more detail to its internal transactions.

Related: iDownloadBlog.comMore, PYMNTS.com, Cult of Mac, MacRumors, Gizmodo, The Register

Tweets:@geoffreyfowler


March 28, 2020
Joseph Cox / Motherboard

Joseph Cox / Motherboard  
Zoom Updates iOS App to Stop Sending Data to Facebook

Video-conferencing software company Zoom issued an update to its iOS app, which stops it from sending certain pieces of data to Facebook. A Motherboard analysis had revealed this privacy faux pas. Motherboard discovered that when a user opened the app, their timezone, city, and device details were sent to the social network giant.

Related: Neowin, MacRumors, iMore, TechWorm, The Sun, BetaNews, Verdict, BGR, Cult of Mac, Quartz


March 30, 2020
Byron Tau / Wall Street Journal

Byron Tau / Wall Street Journal  
U.S. Government Aims to Create a Portal for Federal, State and Local Officials Containing Geolocation Data on U.S. Residents Obtained from Mobile Advertisers in Order to Manage Coronavirus Spread

The federal government, through the Centers for Disease Control and Prevention, and state and local governments have started to receive analyses about the presence and movement of people in certain areas of geographic interest drawn from cellphone data, sources familiar with the project say. The goal is to create a portal for federal, state, and local officials that contains geolocation data in what could be as many as 500 cities across the U.S. The data comes from the mobile advertising industry rather than the cell phone carriers themselves. The supposedly anonymized data could help officials learn how coronavirus is spreading around the country and help blunt its advance. The data can show which locations are attracting visitors and can reveal general levels of compliance with stay-at-home or shelter-in-place orders.

Related: Security – Computing, Just Security, Computer Business Review, Naked Security, Android Authority, MacRumors, Tech Insider