AboutDFIR.com – The Definitive Compendium Project
Digital Forensics & Incident Response

Blog Post

InfoSec News Nuggets 6/12/2024

Apple Launches Private Cloud Compute for Privacy-Centric AI Processing

Apple has announced the launch of a “groundbreaking cloud intelligence system” called Private Cloud Compute (PCC) that’s designed for processing artificial intelligence (AI) tasks in a privacy-preserving manner in the cloud. The tech giant described PCC as the “most advanced security architecture ever deployed for cloud AI compute at scale.” PCC coincides with the arrival of new generative AI (GenAI) features – collectively dubbed Apple Intelligence, or AI for short – that the iPhone maker unveiled in its next generation of software, including iOS 18iPadOS 18, and macOS Sequoia. All of the Apple Intelligence features, both the ones that run on-device and those that rely on PCC, leverage in-house generative models trained on “licensed data, including data selected to enhance specific features, as well as publicly available data collected by our web-crawler, AppleBot.”


iOS 18 will let you record calls — and tells everyone for their privacy

Apple will let you record and transcribe phone calls in iOS 18. The company announced the feature during its Worldwide Developers Conference on Monday and says it will automatically tell call participants that they’re being recorded. The image shared by Apple shows a new recording option on the Phone app, which displays a soundwave, along with how long you’ve been recording. It then transcribes your call in the Notes app, where you can generate a summary using the new Apple Intelligence AI system. You’ll be able to record and transcribe audio from within the Notes app as well.


Pure Storage confirms data breach after Snowflake account hack

Pure Storage, a leading provider of cloud storage systems and services, confirmed on Monday that attackers breached its Snowflake workspace and gained access to what the company describes as telemetry information. While the exposed information also included customer names, usernames, and email addresses, it did not contain credentials for array access or any other data stored on customer systems. “Following a thorough investigation, Pure Storage has confirmed and addressed a security incident involving a third party that had temporarily gained unauthorized access to a single Snowflake data analytics workspace,” the storage company said.


IoT Vulnerabilities Skyrocket, Becoming Key Entry Point for Attackers

Internet of Things (IoT) devices containing vulnerabilities have surged by 136% compared to a year ago, according to Forescout’s The Riskiest Connected Devices in 2024 report. The study, which analyzed data sourced directly from nearly 19 million devices, found that the proportion of IoT devices with vulnerabilities rose from 14% in 2023 to 33% in 2024. The most vulnerable IoT device types were wireless access points, routers, printers, voice over Internet Protocol (VoIP) and IP cameras. Around a third (33%) of IoT devices analyzed had vulnerabilities.


Facebook, Meta, Apple, Amazon Most Impersonated in Phishing Scams

Phishing scams are a constant threat, but have you ever wondered which brands scammers impersonate the most? New research by Mailsuite sheds light on this phenomenon, revealing the brands and industries most susceptible to imitation. Mailsuite analyzed over 1.14 million reported phishing scams from January 2020 to March 2024, uncovering the impersonation trends. About 256 major brand names were analyzed for reported and verified phishing scams on PhishTank, excluding unreliable ones and matching each name to its headquarters country.


Related Posts