Apple has released highly focused iOS 15.2.1 and iPadOS 15.2.1 updates to tackle two bugs and a nasty HomeKit vulnerability.

Mainstream and technology media report that stalkers and criminals use AirTags to track unsuspecting people and aid in car theft. Do a handful of anecdotes truly reveal a broader pattern?

The State of Missouri may pursue criminal charges against a reporter for discovering (and ethically reporting) Social Security numbers in the HTML source code of a state website. The mind boggles.

Did you know that pressing Control-H in Mail deletes the current message? You do now. Adam also shares a story about a Pakistani security researcher reporting a vulnerability on the TidBITS site and a reader tip about avoiding USB hubs when updating an iPhone from a Mac.

The Life360 app lets subscribers see where their friends and family members are at all times, but unfortunately, the company is also selling access to that data to data brokers that repackage and resell it widely.

Apple has sued the notorious NSO Group and will be funding two prominent research groups that specialize in discovering and describing cyber surveillance attacks. These moves appear to be the first step in a new strategy against companies that weaponize operating system flaws to profit off surveillance.

Apple has released important security updates for iOS 14 and iPadOS 14 for a variety of vulnerabilities.

It’s a terrible idea to share passwords with colleagues in email, and the solution for years has been sites like One-Time Secret and 1ty.me that embed a password in a link that can be viewed only once. 1Password has finally gotten into the game, letting users securely share passwords from within the app.

With iOS 15, iPadOS 15, and Safari 15 for macOS, you can add two-factor authentication codes directly to password entries. When you log into a website or app later, the token auto-fills, saving fuss.

Apple has updated iOS 12 and macOS 10.15 Catalina to address severe security vulnerabilities that are actively being exploited in the wild. Update right away.

Apple has updated macOS, iOS, iPadOS, and watchOS to fix two active vulnerabilities, one of which let attackers work around Apple’s BlastDoor protections.

No matter how private a communication service may claim to be, it’s only as private as its weakest link, as two recent stories illustrate.

In a brief statement to media organizations, Apple announced that it is delaying the launch of its CSAM detection technology to collect input and make improvements. Why are we not surprised?

Another big tech company has been hacked. Again. This time it was T-Mobile, with the personal information of 100 million customers stolen.

In an interview with Joanna Stern of the Wall Street Journal, Apple software chief Craig Federighi said the company would be applying “multiple levels of auditability” to its controversial child sexual abuse material (CSAM) detection system. What are they? Another new Apple document explains.