Apple is warning about two zero days in macOS and iOS that are under active attack.
Researchers at Google and Amnesty International have found new spyware campaigns that exploited multiple iOS, Android, and Linux zero days.
Apple has patched a zero day in WebKit that has been exploited in the wild, as well as a serious security bypass bug in macOS.
Apple plans to enable end-to-end encryption for iCloud backups and allow people to use hardware security keys for 2FA in the coming months.
Apple has fixed four flaws in its Xcode IDE, including a remote code execution flaw in Git (CVE-2022-39260).