A piece of malware made its way into the macOS app store after being accidentally notarized by Apple, allowing it to run on victims' Macs.
An issue with the Safari Web Share API can allow an attacker to steal local files from a victim in some circumstances.
Apple has patched, for the second time, a vulnerability in the iOS kernel that has been used in jailbreak tools.
Two vulnerabilities affecting the Mail app in iOS have been used in targeted attacks and one of the flaws requires no user interaction for exploitation.
Apple has opened its bug bounty program up to the broad research community, offering payments of up to $1.5 million.