Apple spent the entirety of its WWDC26 keynote responding to external pressures, including user complaints about Liquid Glass, community and regulatory worries regarding child safety, and the embarrassment of Siri delays and Apple Intelligence weaknesses.

Troubleshooting an inaccessible server is challenging at the best of times and doubly so when you are out of practice. Read how Claude guided Adam Engst through troubleshooting and mitigating a denial of service attack.

Criminals are stealing gift card numbers from retail shelves, replacing them, draining them when purchasers load funds, and using the proceeds to buy Apple products for export—yet another reason to avoid physical gift cards.

Worried about prying eyes at the coffee shop? EyesOff uses your Mac’s webcam to detect when someone’s watching your screen and can alert you, hide your work, or lock your Mac.

If your iPhone or iPad is too old to run iOS 18 or later, Apple hasn’t forgotten you—new updates for iOS and iPadOS 15, iOS and iPadOS 16, and iPadOS 17 patch the notification retention flaw that could expose deleted messages.

The OS 26.5 updates bring end-to-end encrypted RCS messaging to iPhones, a Pride Luminance wallpaper and watch face, and Suggested Places recommendations in Maps. Otherwise, expect a few bug fixes and numerous security updates.

Scammers are hijacking email accounts to send fake party invitations that look like they’re from friends, and even experienced users are falling for them. Learn the red flags, how to alert an affected friend, and what to do if you’re caught.

The FBI extracted Signal messages from an iPhone by exploiting a notification database flaw. Apple has now released iOS 18.7.8 and iOS 26.4.2 to fix a bug that allowed deleted notifications to persist on devices.

A convincing impersonation of TidBITS contributor Glenn Fleishman on our public Slack group fooled an experienced IT professional into installing the OSX.Odyssey infostealer. Because Slack is designed for internal groups, its identity controls and logging aren’t sufficient for safe public use, so we’re shutting down SlackBITS and moving to Discourse Chat.

AI is accelerating the discovery of security vulnerabilities, transforming the landscape of digital security. But Apple users are in a good spot, thanks to Apple’s focus on security and control over the entire ecosystem. TidBITS Security Editor Rich Mogull explains Anthropic’s Mythos and Project Glasswing.

To address the DarkSword exploit, Apple now lets iOS 18 users install the iOS 18.7.7 security update instead of upgrading to iOS 26.4. If you’re still using iOS 18, update immediately.

Sean Hollister’s lively Q&A explains why the FCC’s foreign router ban won’t recall existing routers, audit new ones, or do much of anything to improve security—it just blocks future imports unless manufacturers commit to US production.

Apple’s OS 26.4 updates add Apple Intelligence-generated playlists in Apple Music, image creation and editing tools in Freeform, easier marking of Reminders as urgent, and independent payment methods for adult members of Family Sharing groups. Oh, and eight new emoji you didn’t know how you were living without.

Security researchers have discovered DarkSword, a sophisticated exploit chain targeting iOS 18.4 through 18.7.2. Unlike past spyware aimed at high-profile targets, DarkSword is being surreptitiously deployed on legitimate websites against ordinary users.

Heading to a protest or crossing a border? Your iPhone’s Face ID—which is normally a boon with Stolen Device Protection—could become a liability. Learn when to disable biometrics and what other steps you can take to protect your privacy and data from compelled access.