The Apple vulnerabilities (CVE-2023-32409, CVE-2023-28204 and CVE-2023-32373) exist in WebKit.
Apple and Google have submitted a draft IETF specification to alert users when they are being tracked by Bluetooth accessories such as AirTags.
Apple is warning about two zero days in macOS and iOS that are under active attack.
Researchers at Google and Amnesty International have found new spyware campaigns that exploited multiple iOS, Android, and Linux zero days.
Apple has patched a zero day in WebKit that has been exploited in the wild, as well as a serious security bypass bug in macOS.