Latest news with #WebKit
Phone Arena
7 hours ago
- Business
- Phone Arena
Apple's browser wall is crumbling, and Japan might be the first to break it
Should Apple finally allow real browser competition on iOS? Yes — I want real Chrome, Firefox, and more on iOS Absolutely — Apple's WebKit-only rule is anti-competitiv Maybe — but only if privacy and performance are protected No — Safari works fine, and I trust Apple's security mod I had no idea Apple blocked other browser engines! Yes — I want real Chrome, Firefox, and more on iOS 0% Absolutely — Apple's WebKit-only rule is anti-competitiv 0% Maybe — but only if privacy and performance are protected 0% No — Safari works fine, and I trust Apple's security mod 0% I had no idea Apple blocked other browser engines! 0% The EU is also preparing to act Receive the latest Apple news By subscribing you agree to our terms and conditions and privacy policy A financial motive to lock the browser Recommended Stories What it means for users and what comes next The guidelines are specifically designed to prevent Apple from replicating what critics call 'malicious compliance' — a strategy the company has been accused of using in the European Union following the Digital Markets Act (DMA).According to a recent Reuters report, the EU is preparing to fine Apple for alleged DMA violations, likely tied to how it has handled browser engine access and in-app payments. Apple claims to have complied with the law, but companies like Spotify and Mozilla have argued that Apple's system is intentionally burdensome and designed to discourage has publicly called Apple's approach 'a burden' that 'fails to give consumers viable choices.' Meanwhile, OWA reports that Apple's restrictions force developers like Google and Mozilla to release entirely new apps if they want to bring true third-party browsers to iOS — a move that resets user counts to zero and doubles maintenance OWA points out, no major browser maker has released a WebKit-free iOS browser in the EU, even though it's been 16 months since the rules went into effect. That's because Apple continues to impose technical and financial obstacles, including poor developer tooling and legal hoops, that make such launches also highlighted what may be Apple's true motivation for protecting Safari's dominance. According to the group, Apple earns an estimated $20 billion per year from its search deal with Google — mostly via Safari. That accounts for 14–16% of Apple's annual operating profit, meaning that every 1% drop in Safari's browser share could cost Apple $200 million Apple has a vested interest in keeping Safari front and center — even if it means skating the edge of antitrust Apple complies with Japan's Smartphone Act, users in Japan could soon enjoy real Chrome, Firefox, Brave, or Opera — running on Blink, Gecko, or other engines — and not just reskinned versions of Safari. That could lead to better performance, broader web compatibility, and real competition on iOS for the first Japan and the EU, UK regulators are also turning up the heat. A recent investigation concluded that both Apple and Google were 'holding back' browser innovation on mobile by limiting access to rendering far, Apple has not commented publicly on Japan's new rules — but the deadline is looming. Whether Apple opens iOS browser access globally or keeps fighting change region by region, the WebKit wall is cracking, and real competition may finally be coming to the iPhone.
The Verge
14 hours ago
- The Verge
Apple's lock on iPhone browser engines gets a December deadline
We might finally see the first iPhone browsers built on top of third-party engines now that Japanese regulators have taken up the issue. Apple's malicious compliance in the EU has so far prevented Chrome, and its Blink engine, for example, from coming to iOS, but recently published guidelines related to Japan's Smartphone Act could change that. Not only do they set a December deadline for restrictions to be lifted, but also specify that Apple can't enforce alternative rules that make it difficult to adopt alternatives to the company's own WebKit browser engine. According to a translation provided by the Open Web Advocacy organization, the guidelines prevent Apple from doing the following: 'Imposing unreasonable technical restrictions on individual app providers while allowing them to adopt alternative browser engines, placing excessive financial burdens on individual app providers for adopting alternative browser engines, and steering smartphone users away from using individual software that incorporates alternative browser engines.' Posts from this author will be added to your daily email digest and your homepage feed. See All by Jess Weatherbed Posts from this topic will be added to your daily email digest and your homepage feed. See All Apple Posts from this topic will be added to your daily email digest and your homepage feed. See All iPhone Posts from this topic will be added to your daily email digest and your homepage feed. See All News Posts from this topic will be added to your daily email digest and your homepage feed. See All Policy Posts from this topic will be added to your daily email digest and your homepage feed. See All Politics Posts from this topic will be added to your daily email digest and your homepage feed. See All Regulation Posts from this topic will be added to your daily email digest and your homepage feed. See All Tech
Fox News
5 days ago
- Fox News
Update your iPhone now: iOS 18.6 fixes 29 security flaws
If you haven't updated your iPhone yet, now's the time. Apple has officially rolled out iOS 18.6, and while the update may seem small, it packs a powerful punch. With 29 security vulnerabilities addressed, many involving Safari and WebKit, experts say updating now is your best defense against future threats. Sign up for my FREE CyberGuy ReportGet my best tech tips, urgent security alerts and exclusive deals delivered straight to your inbox. Plus, you'll get instant access to my Ultimate Scam Survival Guide — free when you join my IOS 18.6 closes multiple security holes, including one that could expose sensitive data just by visiting a malicious site. Apple typically keeps details vague at first, but what we do know is serious. Several of the flaws involve WebKit, the browser engine behind Safari, which is a common target for attackers. Other fixes involve CoreMedia, CoreAudio and CFNetwork, all key iOS frameworks. One major concern was a vulnerability that allowed your passcode to be read aloud by VoiceOver. Another bug could have enabled address bar spoofing, tricking users into thinking they were visiting a safe website. These are the kinds of tricks hackers love, and you don't want to be caught off guard. Apple patched: While none of the flaws have been exploited in the wild yet, experts say that's no reason to wait. Updating only takes a few minutes and can prevent a major headache later. Here's how: Pro tip: If your iCloud storage is full, your update may fail. Free up some space before you begin. IPhones weren't the only devices getting attention this time around. Apple also released: Make sure each device is connected to Wi-Fi and has enough battery life or is plugged into power. Not all of us remember to check our devices for new updates right away, which is why adding a layer of antivirus protection is so important. Good antivirus software will stop you from clicking on malicious links that could install malware on your device. It can also scan for hidden threats and alert you if something suspicious is found. This gives you an extra line of defense, even between iOS updates. Get my picks for the best 2025 antivirus protection winners for your Windows, Mac, Android and iOS devices at Security updates like iOS 18.6 are a key part of keeping your personal data safe. Even if your phone is working fine, skipping updates can leave you open to remote attacks. And with iOS 26 and the iPhone 17 just around the corner, this could be the last update before a major shift. If you don't plan to jump to iOS 26 immediately, applying 18.6 now helps lock in maximum protection. While it may not bring flashy new features, iOS 18.6 plays a crucial role in keeping your iPhone secure. With bugs patched across WebKit, CoreMedia and more, this update shores up vulnerabilities before they're exploited. It's fast, free and highly recommended. And remember, automatic updates aren't instant. If you wait, you could stay vulnerable longer than you think. What would make you trust Apple more or less when it comes to your personal data? Let us know by writing to us at Sign up for my FREE CyberGuy ReportGet my best tech tips, urgent security alerts and exclusive deals delivered straight to your inbox. Plus, you'll get instant access to my Ultimate Scam Survival Guide — free when you join my Copyright 2025 All rights reserved.
CNET
6 days ago
- CNET
You Should Download iOS 18.6 Now to Fix This Zero-Day Flaw
Apple released iOS 18.6 on July 29, ahead of the company's release of iOS 26 this fall. While the next major iOS update will bring Liquid Glass and more to your iPhone, iOS 18.6 doesn't change much on your device. Instead of new features, the update is filled with about two dozen bug and security fixes, including a patch for a flaw that could be actively exploited. You can download iOS 18.6 by going to Settings, then tapping General. Next, select Software Update, then tap Update Now and follow the prompts on your screen. Here's what iOS 18.6 brings to your iPhone. This update patches a zero-day flaw and other issues According to Apple's security notes, iOS 18.6 fixes about two dozen security issues and bugs. But one issue in WebKit, Apple's in-house-developed internet browser engine used in Safari, could compromise your system and is being tracked as CVE-2025-6558. "This is a vulnerability in open source code and Apple Software is among the affected projects," Apple wrote in the security notes for this issue. The CVE Program, which helps identify, define and catalog cybersecurity risks, lists the severity of this issue as high. This bug was identified by a member of Google's Threat Analysis Group, and Google wrote on July 15 that it is aware that an exploit for this bug exists in the wild. So you should download iOS 18.6 immediately to protect your device. Are there any new features in iOS 18.6? After downloading and testing iOS 18.6 during the beta cycle, I found no new features or noticeable changes in the update. That's not surprising considering Apple's iOS release schedule over the years. Apple announced iOS 18 at WWDC 2024 and released iOS 17.6 more than a month later in July. That update was filled with more than 30 important bug fixes and security patches, but no new features. Apple recommended that everyone download the update at the time, and it was the last major iOS 17 update before the release of iOS 18. Apple did the same thing in July 2023 when it released iOS 16.6. When the tech giant released that update, it was focused on bug fixes and security patches. After that, the next major iOS release was iOS 17. Apple is likely shifting gears and focusing more on iOS 26. In fact, the company has already released multiple betas of that iOS software in preparation for its fall release. While there aren't any new features in iOS 18.6, you should still download the update to your iPhone to take care of the security issues and bugs, especially that zero-day flaw. iOS 18.6 release notes The release notes for iOS 18.6 are quite brief, reading, "This update provides important bug fixes and security updates, and fixes an issue in Photos that could prevent memory movies from being shared." If you want more information on the security content of iOS 18.6, you can check out Apple's page breaking down the security content of this and other updates. For more on iOS 18, here's what you need to know about iOS 18.5 and iOS 18.4, as well as our iOS 18 cheat sheet. You can also check out what you should know about iOS 26 and my first impressions of the iOS update.
Tom's Guide
01-08-2025
- Tom's Guide
Apple issues security updates to fix zero-day flaw used in Chrome attacks — update your iPhone and Mac right now
Apple users should be sure to update their devices to iOS 18.6, particularly if they're also Chrome users, as the latest software version includes a security patch that addresses a high-severity exploit that has been targeting the browser in zero-day attacks. As reported by Bleeping Computer, the zero-day flaw in question (tracked as CVE-2025-6558) involves an incorrect validation of untrusted input in an open-source graphics abstraction layer. It then processes GPU commands and translates API calls, which enables remote attackers to execute arbitrary code within the browser's GPU process via specially crafted HTML pages. This could potentially allow them to escape the sandbox that isolates browser processes from the underlying operating system. All this to say that, according to BGR, if you don't update Chrome, you could be opening yourself up to being attacked just by visiting a malicious website. Attackers could run code on your device and bypass the protections that normally keep your browser safe and from there perform other malicious activities like running malware on your phone, stealing passwords, deploying ransomware or botnets or recording clipboard or webcam views. The flaw was discovered in June by the Google TAG team and reported to Chrome, who patched it in July and tagged it as actively exploited. As per usual, Google has yet to provide much additional information about the attacks. However, it is well-known that TAG is often responsible for discovering flaws that are exploited by government-sponsored threat actors in targeted campaigns. Apple released WebKit security updates on Tuesday that addressed the vulnerability, which affects iOS 18.6 and iPadOS 18.6, macOS Sequoia 15.6, iPadOS 17.7.9, tvOS 18.6, visionOS 2.6, watchOS 11.6. In its security statement, Apple said that 'Processing maliciously crafted web content may lead to an unexpected Safari crash.' CISA (Cybersecurity and Infrastructure Security Agency) added this security bug to its catalog of vulnerabilities known to be exploited in attacks on July 22, requiring federal agencies patch their software by August 12th. Get instant access to breaking news, the hottest reviews, great deals and helpful tips. Updating your phone, computer and of course, your browser, is something you should be doing regularly and a zero-day flaw like this one which could be exploited by hackers in their attacks is exactly the reason why. Follow Tom's Guide on Google News to get our up-to-date news, how-tos, and reviews in your feeds. Make sure to click the Follow button.
