Loading...
Loading...
Browse all stories on DeepNewz
Visit3 CocoaPods Vulnerabilities Expose 3 Million iOS and macOS Apps to Supply Chain Attacks
Jul 2, 2024, 03:45 PM
Millions of iOS and macOS applications were exposed to significant security risks due to three vulnerabilities in CocoaPods, a widely used open-source dependency manager. These flaws, present for about a decade, could have allowed attackers to execute supply chain attacks by injecting malicious code into 3 million apps. The vulnerabilities were caused by changes in how the package manager operates, which enabled anyone to claim ownership of orphaned packages and potentially execute remote code on the CocoaPods server. Security researchers have identified these critical flaws, and a patch was released last October to address the issues. Despite the patch, the long-term exposure has raised concerns about the security of Apple devices and the potential impact on millions of users.
View original story
Less than $1 million • 25%
$1 million - $10 million • 25%
$10 million - $50 million • 25%
More than $50 million • 25%
Less than $10 million • 25%
$10 million - $50 million • 25%
$50 million - $100 million • 25%
More than $100 million • 25%
Less than $100M • 25%
$100M-$500M • 25%
$500M-$1B • 25%
More than $1B • 25%
Less than $1.5M • 25%
$1.5M to $1.8M • 25%
$1.8M to $2M • 25%
More than $2M • 25%
Less than $50 million • 25%
$50 million to $100 million • 25%
$100 million to $200 million • 25%
More than $200 million • 25%
Less than $50 million • 25%
$50 million to $100 million • 25%
$100 million to $150 million • 25%
More than $150 million • 25%
Less than $100 million • 25%
$100 million to $500 million • 25%
$500 million to $1 billion • 25%
More than $1 billion • 25%
Less than $1 million • 25%
$1 million to $5 million • 25%
$5 million to $10 million • 25%
More than $10 million • 25%
Less than $6.8 million • 25%
$6.8 million to $10 million • 25%
$10 million to $15 million • 25%
More than $15 million • 25%
Less than $100 million • 25%
$100 million to $500 million • 25%
$500 million to $1 billion • 25%
More than $1 billion • 25%
Less than 10 • 25%
10 to 50 • 25%
51 to 100 • 25%
More than 100 • 25%
0-5 vulnerabilities • 25%
6-10 vulnerabilities • 25%
11-15 vulnerabilities • 25%
More than 15 vulnerabilities • 25%
More than 10 • 25%
0 • 25%
1-5 • 25%
6-10 • 25%