Firehose – News, Alerts, Docs
- Tuesday November 19
- 10:48 amiMac M4 review: Minor changes lead to perfection for Apple's all-in-one Mac
Apple's 2024 iMac M4 got some internal updates to a familiar design, and the bevy of those small changes helped Apple perfect its ever-popular all-in-one.iMac M4 review: The new 2024 M4 iMac in greenThe new wave of colorful iMacs debuted in November 2024, alongside upgraded MacBook Pros and a redesigned Mac mini. We picked one up and have been testing it out in the studio for the past two week or so.Unsurprisingly, we were happy with what Apple delivered here. Continue Reading on AppleInsider | Discuss on our Forums10:46 amAqara Launches Smart Smoke Detector and Valve Controller
Aqara today announced two new smart home safety products – a Smoke Detector for European markets and a Valve Controller T1 for global release. Both devices expand the company's home safety lineup with Matter compatibility and Apple HomeKit integration. The Valve Controller T1 is designed to prevent water damage by retrofitting onto existing household water valves. It can automatically shut off water flow when linked to leak sensors and supports common pipe sizes from 1/2" to 1". The controller runs on four AA batteries with an estimated two-year battery life. The new Smoke Detector, available exclusively in Europe, features an 85-decibel siren and smartphone notifications for smoke detection. When paired with Aqara cameras, homeowners can visually verify alarms remotely. The detector can also trigger other Aqara hub sirens and grouped smoke detectors for whole-home alerts. Both products work with Apple Home, Amazon Alexa, and Google Home through Matter-over-Bridge support. This enables automated routines like flashing smart lights red during smoke detection or shutting down HVAC systems to prevent smoke circulation. The Smoke Detector utilizes Zigbee protocol for efficient power usage, offering up to 10 years of battery life. Both devices can be managed through the Aqara Home app for configuration and monitoring. The Valve Controller T1 is available now through Aqara's Amazon stores in the US and Europe. The Smoke Detector can be purchased from Aqara's European Amazon stores and select retailers.Tags: Aqara, HomeKitThis article, "" first appeared on MacRumors.comDiscuss this article in our forums10:42 amApple Watch is a bargain this Black Friday 2024
Macworld The annual Black Friday sales event is a fantastic time to buy an Apple Watch, with big savings from a wide variety of retailers. Technically it lasts just four days, from Black Friday (November 29, 2024) to Cyber Monday (December 2, 2024), but prices tend to drop throughout November and the deals have started appearing already. In this article we will share all the best Apple Watch deals in the run up to Black Friday 2024 and throughout the event. We also share our advice about how to get the best deal on an Apple Watch, what to look out for, and what to avoid. Does Apple do Apple Watch deals on Black Friday? Apple doesn’t do discounts, but it holds a shopping event over the Black Friday weekend. This typically consists of gift card offers rather than actual savings. In 2023 you could get gift cards with qualifying purchases on Apple’s U.S. site or Apple’s U.K. site. We are still waiting for details of how much the gift cards will be worth this year, but last year you got a $50/£40 card when you bought the Apple Watch SE or Series 9. Read Apple’s Black Friday 2024 deal for the latest information. While Apple doesn’t cut Apple Watch prices for Black Friday, plenty of other retailers do. We are sharing the best deals we have seen so far below. Best Apple Watch deals for Black Friday 2024 U.S. Amazon, Apple Watch Series 10 (42mm): $349 ($50 off with coupon, MSRP $399) Amazon, Apple Watch Series 10 (46mm): $379 ($50 off, MSRP $429) Amazon, Apple Watch SE 2 (40mm): $189 ($60 off, MSRP $249) Amazon, Apple Watch SE 2 (44mm): $219 ($60 off, MSRP $279) Amazon, Apple Watch Ultra 2: $700 ($99 off, MSRP $799) U.K. Amazon, Apple Watch Ultra 2 (49mm, GPS + Cellular): £769 (£30 off, RRP £799) Amazon, Apple Watch Series 10 (46mm): £409 (£20 off, RRP £429) Amazon, Apple Watch Series 10 (42mm): £379 (£20 off, RRP £399) Argos, Apple Watch SE (40mm) (2022): £209 (£10 off, RRP £219) Argos, Apple Watch Series 9 (45mm): £329 (RRP was £429 – Clearance) Argos, Apple Watch Series 9 (41mm): £299 (RRP was £399 – Clearance) Black Friday 2024: How to get the best deal on the right Apple Watch Apple currently sells three Apple Watches: the standard Apple Watch Series 10 (starting at $399/£399), the cut-price Apple Watch SE (from $249/£219), and the premium Apple Watch Ultra 2 (from $799/£799). These are each available in a range of colors, materials, and sizes, which may affect the price. For most customers the Apple Watch SE will be more than sufficient; however, the Series 10 offers a bigger screen (with always-on functionality) and better health sensors. The Ultra is only worth getting if you live a life of adventure and need a watch that can cope with the rough and tumble of long hikes, perilous climbs, and underwater dives. For detailed advice on selecting the best model for you, check out our Apple Watch buying guide. You can get a deal on an Apple Watch all year round in our round up of the Best Apple Watch deals. You may also see deals on older models that Apple itself doesn’t sell any more. The Apple Watch Series 9 came out in fall 2023 and was only discontinued two months ago; that should still serve you perfectly well. For that matter, the Series 8 and 1st-gen Ultra launched in fall 2022, the same time as the current SE, so they ought to do fine too. But we’d probably steer clear of anything older than that. It’s important to be aware that Black Friday will bring bad deals as well as good ones. Retailers don’t want to give you a great deal; they want you to buy their unwanted stock at a high price, and will use all sorts of tricks to persuade you to do so. Don’t let them get away with it. Always check the current MSRP/RRP for the watch you’re planning to buy (we include these with all of our recommended deals). Apple tends to drop prices on older products on a yearly basis, but retailers may conveniently forget to mention this and quote the old price instead. That makes their discount look bigger and the deal more appealing. Some retailers also raise their own prices ahead of Black Friday, then drop them back down and claim a large saving. Price tracker sites like CamelCamelCamel can help you to work out if this has happened. We will also flag it if we see it. It’s worth checking reviews and buying guides (such as ours, linked above) to assess the age and worth of the device. Make sure you’re not being fobbed off with antiquated stock. Also, watch out for deals on the cellular models; these can look like big savings, but in our experience there is little point in owning a cellular Apple Watch. You might as well pay less and get the standard model. Finally, what actually constitutes a good deal? U.S. buyers should be looking at a benchmark of roughly $60 to $70 off the current models and $100 or more off discontinued ones, which is what we saw in 2023. But deals tend to be weaker in the U.K., where we struggled to find £30 off anything last year. We hope the retailers will do better this time around, but you may need to prepare yourself for disappointment. Black Friday: Latest Apple Watch Series 10 deals The Apple Watch Series 10 came out in September 2024. The 42mm model starts at $399/£399. Retailer Price $349 View Deal $349 View Deal $399 View Deal 399 View Deal $399 View Deal $399.99 View Deal Price comparison from over 24,000 stores worldwide View more prices Product Price Price comparison from Backmarket The 46mm version of the Apple Watch Series 10 starts at $429/£429. Retailer Price $379 View Deal $379 View Deal $429 View Deal $429.99 View Deal Price comparison from over 24,000 stores worldwide Product Price Price comparison from Backmarket Black Friday: Latest Apple Watch Ultra 2 deals Apple Watch Ultra 2 came out in September 2023. It has an MSRP of $799/£799. New Refurbished Retailer Price $799 View Deal $799 View Deal $799.99 View Deal Price comparison from over 24,000 stores worldwide Product Price Apple Watch Ultra 2 (2023) GPS + Cellular 49 mm – Titanium Natural Titanium – Ocean band Blue $556.28 View Deal Apple Watch Ultra 2 (2023) GPS + Cellular 49 mm – Titanium Natural Titanium – Alpine loop Blue $605.12 View Deal Price comparison from Backmarket Black Friday: Latest Apple Watch SE (2022) deals Apple’s first budget SE smartwatch came out in 2020; this is the second-gen model, which launched in September 2022. Prices start at $249/£219 for the smaller version. (If you don’t see any deals below this paragraph, that means there’s no stock left in your region.) Retailer Price $189 View Deal $299.99 View Deal Price comparison from over 24,000 stores worldwide Product Price Price comparison from Backmarket The larger 44mm version has an MSRP of $279/£249. Retailer Price $279 View Deal Price comparison from over 24,000 stores worldwide Product Price Price comparison from Backmarket Black Friday: Latest Apple Watch Series 9 deals The Series 9 was released in 2023, having launched alongside the Ultra 2. The 41mm version had an MSRP of $399/£399 before being discontinued. New Refurbished Retailer Price $379.99 View Deal $399 View Deal $399.99 View Deal $409 View Deal Price comparison from over 24,000 stores worldwide Product Price Smart Watch MR953LL/A HR – Pink $249.99 View Deal Apple Watch Series 9 (2023) GPS 41 mm – Aluminium Silver – Sport band Blue $267.15 View Deal Apple Watch Series 9 (2023) GPS + Cellular 41 mm – Aluminium Silver – Sport band Blue $349 View Deal Price comparison from Backmarket The 45mm version of the Apple Watch Series 9 was $429/£429. Retailers worth checking out U.S. Apple Amazon U.S. Best Buy Costco Target Walmart U.K. Apple Amazon U.K. Argos Currys John Lewis KRCS Very Amazon Lightning Deals Check out these time-limited tech deals before they go. (Prices subject to change.) Monster Boomerang Neckband Bluetooth Spe…$59.99 ( 33% off, was $89.99 ) Norton 360 Platinum 2024$39.99 ( 69% off, was $129.99 ) Beats Studio Buds – True Wireless Noise …$99.95 ( 33% off, was $149.95 ) Beats Studio Buds – True Wireless Noise …$99.99 ( 33% off, was $149.95 ) Beats Studio Buds – True Wireless Noise …$99.99 ( 33% off, was $149.95 ) Logitech G PRO X SUPERLIGHT Wireless Gam…$91.00 ( 43% off, was $159.99 ) BOSCH GPB18V-5CN 18V Jobsite Radio with …$150.54 ( 34% off, was $229.00 ) SAMSUNG 98-Inch Class QLED 4K Q80C Serie…$3997.99 ( 50% off, was $7997.99 ) Blink Outdoor 4 (4th Gen) + Battery Exte…$49.99 ( 58% off, was $119.99 ) Introducing Ring Pan-Tilt Indoor Cam | S…$49.99 ( 37% off, was $79.99 ) SAMSUNG 43-Inch Class QLED 4K QN90D Seri…$897.99 ( 40% off, was $1497.99 ) SAMSUNG 75-Inch Class QLED 4K QN90D Seri…$1797.99 ( 45% off, was $3297.99 ) Hisense 50-Inch Class U6HF Series ULED 4…$299.99 ( 40% off, was $499.99 ) Hisense 100-Inch Class U7 Series ULED 4K…$1798.00 ( 40% off, was $2997.95 ) Hisense 100-Inch Class U8 Series Mini-LE…$2997.99 ( 40% off, was $4997.99 ) SAMSUNG 85-Inch Class QLED 4K QN90D Seri…$2297.99 ( 52% off, was $4797.99 ) SAMSUNG 50-Inch Class QLED 4K QN90D Seri…$997.99 ( 37% off, was $1597.99 ) SAMSUNG 65-Inch Class OLED 4K S85D Serie…$1297.99 ( 38% off, was $2097.99 ) All New, Made for Amazon$14.99 ( 46% off, was $27.99 ) Made for Amazon$14.99 ( 40% off, was $24.99 ) Black Friday 2024: Best deals for Apple products Check out these roundups for the best Apple deals: Best Black Friday 2024 Apple accessory deals Apple Black Friday 2024 sale Best Black Friday 2024 Apple deals Best Black Friday 2024 Mac Deals Best Black Friday 2024 MacBook deals Best Black Friday 2024 AirPods deals Best Black Friday 2024 Apple Watch deals Best Black Friday 2024 iPad deals Best Black Friday 2024 iPhone deals Best Black Friday 2024 Mac monitor deals Best Black Friday 2024 SSD and external hard drive deals10:22 amRussia SMS Carrier Maintenance – Beeline
THIS IS A SCHEDULED EVENT Nov 20, 13:00 - 16:00 PSTNov 19, 02:13 PSTScheduled - The Beeline network in Russia is conducting an emergency maintenance from 20 November 2024 at 13:00 PST until 20 November 2024 at 16:00 PST. During the maintenance window, there could be intermittent delays delivering SMS to Beeline Russia handsets.10:22 amRussia SMS Carrier Maintenance – MOTIV
THIS IS A SCHEDULED EVENT Nov 20, 10:20 - 13:00 PSTNov 19, 02:15 PSTScheduled - The MOTIV network in Russia is conducting an emergency maintenance from 20 November 2024 at 10:20 PST until 20 November 2024 at 13:00 PST. During the maintenance window, there could be intermittent delays delivering SMS to MOTIV Russia handsets.10:15 amApple releases fix for disappearing data in Notes program
Apple has apparently acknowledged the issue and offered a solution to fix a scary bug in its Notes program that caused entered data to disappear. The company issued a new set of terms and conditions that appeared via a device pop-up window. That happened a couple of weeks ago for iCloud terms, and while the […] Source10:10 amNext word prediction in keyboard extension
I'm making a keyboard extension with the excellent keyboardkit. Does anyone know a library that can do next word prediction? Or perhaps a light ai model that could do it? submitted by /u/Electronic_Fly7364 [link] [comments]10:00 amApple to discontinue iCloud backup support for devices running iOS 8 or earlier in December | PowerPageApple to discontinue iCloud backup support for devices running iOS 8 or earlier in December
You’re going to have to upgrade your devices or find a workaround eventually. Beginning in December, Apple will require users performing a backup over iCloud to be running iOS 9 or later. Per an email to its customers, Apple stated that new backups for iPhones and iPads running iOS 8 or earlier will no longer […] Source09:47 amMeet Pidgeon: a different way to digest news and stay up to date with trends | Reddit on iOS ProgrammingMeet Pidgeon: a different way to digest news and stay up to date with trends
Hey everyone! First of all I wanted to thank this subreddit as it's been a great inspiration and source of information whilst developing the app. It was a very long journey but I'm finally excited to share Pidgeon, a news summaries app I've built that uses AI to deliver concise summaries of trending stories from […]09:35 amRevertibe – A state versioning library to replace UndoManager
Hey all, I've recently updated and open sourced my old state versioning library that I made to replace UndoManager. It tracks changes to your state for you and gives you access to undo and redo actions, as well as version tagging and scope management. The recent updates improved the interface, providing a single macro for […]09:24 amGetting started on paywalls
Just finished swiftUI, and planning on my first app right now. I'm trying to get my hands on paywall/verification right now but weren't able to find any valuable resources by googling and searching through this sub. A link to a well-written article could help. I am also going to build a relay server with python, […]09:23 amStats and Widgets for Google Admob
https://preview.redd.it/elsbqvkhtt1e1.png?width=2046&format=png&auto=webp&s=74a8a3020c75ece6ee6eb1fdcbf3ca8984c4c51e Hey Redditors! 🤙🏼 Not too long ago, I wanted a way to see my AdMob earnings right on my iPhone with clean, simple widgets. I found a few apps, but they were cluttered with ads and had a confusing layout—so I decided to create my own!! ⭐️ Features ✅ Daily, Weekly, and Monthly Revenue […]08:53 amSMS Delivery Delay To Multiple Airtel Networks In Congo.
Nov 19, 00:53 PSTResolved - We are no longer experiencing SMS delivery delays when sending messages to Airtel Network in Congo. This incident has been resolved.Nov 18, 22:54 PSTMonitoring - We are observing recovery in SMS delivery delays when sending messages to Airtel Network in Congo. We will continue monitoring the service to ensure a full recovery. We will provide another update in 2 hours or as soon as more information becomes available.Nov 18, 03:36 PSTUpdate - We continue to experience SMS delivery delays when sending messages to Airtel Network in Congo. Our engineers are working with our carrier partner to resolve the issue. We will provide another update in 24 hours or as soon as more information becomes available.Nov 17, 03:36 PSTUpdate - We continue to experience SMS delivery delays when sending messages to Airtel Network in Congo. Our engineers are working with our carrier partner to resolve the issue. We will provide another update in 24 hours or as soon as more information becomes available.Nov 16, 03:42 PSTUpdate - We continue to experience SMS delivery delays when sending messages to Airtel Network in Congo. Our engineers are working with our carrier partner to resolve the issue. We will provide another update in 24 hours or as soon as more information becomes available.Nov 15, 11:46 PSTUpdate - We continue to experience SMS delivery delays when sending messages to Airtel Network in Congo. Our engineers are working with our carrier partner to resolve the issue. We will provide another update in 16 hours or as soon as more information becomes available.Nov 15, 03:47 PSTUpdate - We are experiencing SMS delivery delays when sending messages to Airtel Network in Congo. Our engineers are working with our carrier partner to resolve the issue. We will provide another update in 8 hours or as soon as more information becomes available.Nov 15, 00:05 PSTUpdate - We are experiencing SMS delivery delays when sending messages to Airtel Network in Congo. Our engineers are working with our carrier partner to resolve the issue. We will provide another update in 4 hours or as soon as more information becomes available.Nov 14, 22:19 PSTUpdate - We are experiencing SMS delivery delays when sending messages to Airtel Network in Congo. Our engineers are working with our carrier partner to resolve the issue. We will provide another update in 2 hours or as soon as more information becomes available.Nov 14, 21:26 PSTInvestigating - We are experiencing SMS delivery delays when sending messages to Airtel Network in Congo. Our engineers are working with our carrier partner to resolve the issue. We will provide another update in 1 hour or as soon as more information becomes available.08:38 amMy First App in Apple Store
Hi Reddit! 👋 After months of hard work, I’m thrilled to share that I’ve officially launched my very first iOS app — Fish Mystery! 🎣 It’s a fun and engaging game perfect for anyone who loves puzzles and exploration. 💡 About the app: Unique gameplay Beautiful design Suitable for all ages 📲 You can download […]08:22 amUnited States SMS Carrier Maintenance – T-Mobile
THIS IS A SCHEDULED EVENT Nov 19, 23:00 PST - Nov 21, 04:00 PSTNov 18, 23:52 PSTScheduled - The T-Mobile network in the United States is conducting a series of emergency maintenances from 19 November 2024 at 23:00 PST until 21 November 2024 at 04:00 PST. During the maintenance window, there could be intermittent delays delivering SMS to and from T-Mobile United States handsets.Note, the maintenance will be carried out on each of the following dates and times:19 November 2024 at 23:00 PST until 20 November 2024 at 02:00 PST21 November 2024 at 00:00 PST until 21 November 2024 at 04:00 PSTWe are aware of the short notice and are working with our Carrier Partners to provide earlier notification where possible.08:04 amMy RSS Reader PoweReader is now on Product Hunt! 🚀
Why I Built This I was a long-time Reeder user, but as someone who heavily reads English RSS feeds, I constantly found myself switching between Reeder and translation tools. While my English is decent, reading in English is still slower than in my native language. After discovering immersive translation (which displays original text alongside translations), […]07:22 am💬❓ AppStore promotional codes and other free tokens
Hey everyone, I have an app on the AppStore with these characteristics: – it has a hard paywall – a single in-app monthly subscription with 1 month free trial – option to enter promotional codes (that I generate through the AppStoreConnect) and which extend that trial to 6 months – I have user authentication via […]07:16 amSMS Delivery Delay To Africell Network In Congo
Nov 18, 23:16 PSTInvestigating - We are experiencing SMS delivery delays when sending messages to Africell Network in Congo. Our engineers are working with our carrier partner to resolve the issue. We will provide another update in 1 hour or as soon as more information becomes available.06:45 amSMS Delivery Failures to Telefonica Network in El Salvador
Nov 18, 22:45 PSTInvestigating - We are experiencing SMS delivery failures to Telefonica Network in El Salvador. Our engineers are working with our carrier partner to resolve the issue. We expect to provide another update in 1 hour or as soon as more information becomes available.06:06 amiPhone 17 Air could be Apple’s slimmest iPhone ever
Apple's 2025 iPhone 17 Air could be insanely thin at just 6mm, making it the slimmest iPhone ever, as per an Apple analyst. (via Cult of Mac - Apple news, rumors, reviews and how-tos)05:49 amCan I host a privacy policy page on GitHub io for iOS apps. Or must it be on custom domain to match app domain. | Reddit on iOS ProgrammingCan I host a privacy policy page on GitHub io for iOS apps. Or must it be on custom domain to match app domain.
Must the policy specify which app it relates to or can be a catch all company privacy policy. What is the bare minimum a need in terms of online presence. I will provide support through a ticket email system submitted by /u/Reasonable_Edge2411 [link] [comments]04:22 amUS SMS Carrier Maintenance – Small US Carriers
THIS IS A SCHEDULED EVENT Nov 20, 19:00 - 21:00 PSTNov 18, 20:08 PSTScheduled - A subset of small networks in the US are conducting a planned maintenance from 20 November 2024 at 19:00 PST until 20 November 2024 at 21:00 PST. During the maintenance window, there could be intermittent delays delivering SMS to and from small US carriers handsets.04:10 amHow to enable and use RCS for secure cross-platform messaging
Apple's messaging app Messages has adopted a new cross-platform messaging standard called RCS. Here's how to be sure you have it enabled on your iPhone, and what new features it gives you when messaging people on other platforms.RCS messaging brings more features to cross-platform messaging.The RCS protocol, which stands for Rich Communication Services, brings some of the abilities of Messages to users who aren't on iPhones. It has also been adopted by other messaging apps, such as WhatsApp.As of iOS 18, RCS is supported — meaning some features you previously only saw when reading or sending messages to other iPhone users also now work when conversing with Android owners. Continue Reading on AppleInsider | Discuss on our Forums02:36 amSMS Delivery Delay To Telikom Network In Papua New Guinea
Nov 18, 18:36 PSTInvestigating - We are experiencing SMS delivery delays when sending messages to Telikom Network in Papua New Guinea. Our engineers are working with our carrier partner to resolve the issue. We will provide another update in 1 hour or as soon as more information becomes available.02:12 amApple to increase Indonesia investment tenfold to appeal iPhone 16 ban
Indonesia hasn't budged on Apple's $10 million investment offer to lift an iPhone 16 sales ban, so the company has reportedly increased its offer to $100 million.iPhone 16 has been banned from sale in IndonesiaIndonesia Ministry of Industry blocked Apple's ability to sell the iPhone 16 in the country after falling short of a $109.6 million commitment to invest. Apple reportedly offered an additional $10 million investment on November 5, but that appears to have not been enough to get the sales ban lifted.According to a report from Bloomberg, Apple has allegedly offered to invest almost $100 million into Indonesia over the next two years. The Ministry of Industry hasn't made a decision yet, but it is reportedly demanding Apple rethink its investment plans to focus on R&D. Continue Reading on AppleInsider | Discuss on our Forums01:52 amAMS (Amsterdam) on 2024-11-20
THIS IS A SCHEDULED EVENT Nov 20, 01:00 - 06:00 UTCNov 19, 01:46 UTCScheduled - We will be performing scheduled maintenance in AMS (Amsterdam) datacenter on 2024-11-20 between 01:00 and 06:00 UTC.Traffic might be re-routed from this location, hence there is a possibility of a slight increase in latency during this maintenance window for end-users in the affected region. For PNI / CNI customers connecting with us in this location, please make sure you are expecting this traffic to fail over elsewhere during this maintenance window as network interfaces in this datacentre may become temporarily unavailable.You can now subscribe to these notifications via Cloudflare dashboard and receive these updates directly via email, PagerDuty and webhooks (based on your plan): https://developers.cloudflare.com/notifications/notification-available/#cloudflare-status.01:47 amSms Delivery Delays to Spark in New Zealand
Nov 18, 17:47 PSTInvestigating - We are experiencing SMS delivery delays when sending messages to Spark in New Zealand. Our engineers are working with our carrier partner to resolve the issue. We will provide another update in 1 hour or as soon as more information becomes available.01:42 amSecurity Bite: Why email security is still so bad
It’s a little-known fact that before emails reach your inbox, they pass through a buffer designed to scan and block malicious content. However, over time, email providers—especially Gmail—have shifted their focus to just adding “warning labels” to those with suspicious links or attachments. This approach, best described as “beating around the bush” hasn’t reduced threats much at all. Shockingly, 91% of all cyberattacks still originate from emails. So, what gives? 9to5Mac Security Bite is exclusively brought to you by Mosyle, the only Apple Unified Platform. Making Apple devices work-ready and enterprise-safe is all we do. Our unique integrated approach to management and security combines state-of-the-art Apple-specific security solutions for fully automated Hardening & Compliance, Next Generation EDR, AI-powered Zero Trust, and exclusive Privilege Management with the most powerful and modern Apple MDM on the market. The result is a totally automated Apple Unified Platform currently trusted by over 45,000 organizations to make millions of Apple devices work-ready with no effort and at an affordable cost. Request your EXTENDED TRIAL today and understand why Mosyle is everything you need to work with Apple. more…12:25 amOngoing iOS 18 Bug Prevents Photo Edits From Being Saved
There is an ongoing but infrequent Photos bug that some iPhone users have been experiencing since upgrading to iOS 18. The issue occurs when attempting to save edits on an image, with users seeing the following message: "There was an error saving this photo. Please try again later." As the message suggests, edits are not able to be saved, and hitting "Cancel" and discarding changes is the only way to get out of the editing interface. A lot of the complaints about the problem have been from users who have an iPhone 16 model, but it also appears to be impacting some older iPhones as well. We've run into this bug several times at MacRumors, and it seems to be impacting every version of iOS 18 to date. Reports about the bug started in September, and have continued since then. Most recently, several beta testers running iOS 18.2 have reported seeing the popup. It is worth noting that this is an error that some people ran into before iOS 18, but it appears to be much more frequent now. It's not clear what's causing the problem, and it does not seem to impact all users or even every photo. It could be linked to Live Photos, or it could be an issue with iCloud Photos. Some users have all photos from a specific day bugged, indicating a problem with photo capture or saving. There is no complete fix, but duplicating a broken image with a "still photo" allows the edits to be saved, but it removes Live Photo and Photographic Styles.Related Roundups: iOS 18, iPadOS 18Related Forums: iOS 18, iPadOS 18This article, "" first appeared on MacRumors.comDiscuss this article in our forums12:05 amPSA: M4 Macs can’t run virtual machines with older versions of macOS
iMac and , which brings a lot of performance improvements – especially when it comes to AI tasks. However, users are facing issues when trying to run virtual machines with some older versions of macOS on the new machines. more…Monday November 1811:22 pmUnited States SMS Carrier Partner Maintenance
THIS IS A SCHEDULED EVENT Nov 19, 23:00 PST - Nov 20, 03:00 PSTNov 18, 15:09 PSTScheduled - Our SMS carrier partner in the United States is conducting a planned maintenance from 19 November 2024 at 23:00 PST until 20 November 2024 at 03:00 PST. During the maintenance window, there could be intermittent delays delivering SMS to and from United States handsets via United States short codes.11:06 pmU.S. DoJ Wants Google to Sell Chrome Browser
The United States Department of Justice wants Google to sell off its Chrome browser as part of an ongoing antitrust lawsuit, reports Bloomberg. Earlier this year, Google was found to have a search monopoly, and antitrust regulators have since been deciding on the actions that should be taken to address Google's anticompetitive practices. The DoJ plans to ask the court to force Google to sell Chrome, which is the most popular web browser in the world by a wide margin. Chrome's integration with Google Search and other Google products has been cited as one of the factors limiting search competition. Regulators also want Google to uncouple the Android operating system from other products like Google Search and the Google Play Store, both of which are apps installed on Android devices by default. It's not clear how unbundling Android from Google Play would work as Google Play is the Android app store. he DoJ initially wanted Google to sell off Android entirely, but has since backed off of that suggestion. The DoJ will recommend that Google be required to license data and syndicate results from Google Search without restrictions. Bloomberg suggests that syndication would allow rival search engines and AI startups to improve their quality, while the data feed would let others build their own search indexes. Google could also be required to share more data with advertisers, with advertisers given more control over where their ads appear. Google will be prevented from entering into exclusive deals such as the deal that it has with Apple to make Google the default Safari search engine. Google paid Apple $20 billion in 2022 to be the Safari default. Google is appealing the antitrust, while the judge overseeing the case plans to hold a two-week hearing in April 2025 to go over what changes Google has to make to address anticompetitive search behavior. From there, a final ruling is set to be issued in August 2025.Tags: Chrome, GoogleThis article, "" first appeared on MacRumors.comDiscuss this article in our forums11:00 pmResearcher reverse engineers new iPhone security feature ‘Inactivity Reboot’
A recent report by 404 Media revealed that law enforcement agents have been concerned about automatically rebooting themselves, which makes it very difficult to hack these devices. Security researcher Jiska Classen later discovered that this behavior is caused by a new feature called “Inactivity Reboot,” which has now been reverse-engineered by Classen. more…10:52 pmUnited States MMS Carrier Partner Maintenance
THIS IS A SCHEDULED EVENT Nov 20, 22:00 PST - Nov 21, 03:00 PSTNov 18, 14:39 PSTScheduled - Our MMS carrier partner in the United States is conducting a planned maintenance from 20 November 2024 at 22:00 PST until 21 November 2024 at 03:00 PST. During the maintenance window, there could be intermittent delays delivering MMS to and from United States handsets.10:48 pmNFC card to apple wallet
Hello, I am working on a feature,where i want to add nfc card on my apple wallet, I have all necessary tools for that, apple developer account where I can create pass type identifiers and certificates, but I really do not know if it is even possible to add nfc card and use it as […]10:37 pm9to5Mac Daily: November 18, 2024 – Next-gen AirTag, ChatGPT upgrades
Listen to a recap of the top stories of the day from 9to5Mac. 9to5Mac Daily is available on iTunes and Apple’s Podcasts app, Stitcher, TuneIn, Google Play, or through our dedicated RSS feed for Overcast and other podcast players. Sponsored by CardPointers: The best way to maximize your credit card rewards. 9to5Mac Daily listeners can exclusively save 50%. more…10:29 pmiPhone 17 Air could be Apple's thinnest iPhone yet, with a thickness of just 6mm
The iPhone 17 range could introduce a redesigned iPhone with a thickness of just around 6mm, making it the thinnest iPhone ever. Here's what we know so far.The iPhone 17 Slim could be Apple's thinnest iPhone yet.Well before the release of the iPhone 16 range in September 2024, rumors of an iPhone 17 Slim or iPhone 17 Air started popping up.Apple reportedly wants to replace its existing Plus line with a redesigned iPhone 17 Slim, with a 6.6-inch display, ProMotion, and a single rear camera. The most noteworthy characteristic of the upcoming iPhone, however, is its thickness. Rumor Score: 🤔 Possible Continue Reading on AppleInsider | Discuss on our Forums10:26 pmiPhone 17 rumors: A19 chip details, smaller Dynamic Island, more
Apple analyst Jeff Pu is out with a new investor note this week with more details on what to expect from next year’s iPhone 17 lineup. There’s also an interest twist on what to expect from the so-called iPhone 17 Air’s design… more…10:22 pmGIG (Rio de Janeiro) on 2024-11-20
THIS IS A SCHEDULED EVENT Nov 20, 18:00 - 22:00 UTCNov 18, 22:06 UTCScheduled - We will be performing scheduled maintenance in GIG (Rio de Janeiro) datacenter on 2024-11-20 between 18:00 and 22:00 UTC.Traffic might be re-routed from this location, hence there is a possibility of a slight increase in latency during this maintenance window for end-users in the affected region. For PNI / CNI customers connecting with us in this location, please make sure you are expecting this traffic to fail over elsewhere during this maintenance window as network interfaces in this datacentre may become temporarily unavailable.You can now subscribe to these notifications via Cloudflare dashboard and receive these updates directly via email, PagerDuty and webhooks (based on your plan): https://developers.cloudflare.com/notifications/notification-available/#cloudflare-status.10:16 pmSwiftData – “‘insert’ with duplicate .unique property does an upsert” is not working at all. What am I missing? | Reddit on iOS ProgrammingSwiftData – “‘insert’ with duplicate .unique property does an upsert” is not working at all. What am I missing?
Really stuck here. As far as I can tell I should be able to insert a model that has a duplicate 'unique' identifier and it should perform an upsert. Instead, I'm seeing weird behavior that sometimes changes but mostly it's inserting duplicate models and sometimes updating? Here's the code: @Model class TestModel { @Attribute(.unique) var […]10:05 pmRumored ‘iPhone 17 Air’ would be thinnest iPhone ever
A recent research note suggests that Apple's upcoming "iPhone 17 Air" model may be significantly thinner than previous generations… The post appeared first on MacDailyNews.09:45 pmWidget does not work in Xcode Simulator
Xcode 16.1. Just finished building a couple widgets for an app. The strange thing is the widget never works (i.e., placeholder/snapshot or timeline view not rendered at all) in the simulator (tried all iPhone 16 variants running iOS 18.0 and none of them worked). However, the same widget works perfectly fine on real devices running […]09:44 pmiPhone 17: Newer 3nm Technology Expected for A19 and A19 Pro Chips
Apple's next-generation A19 chip for the iPhone 17 and iPhone 17 Air and A19 Pro chip for the iPhone 17 Pro and iPhone 17 Pro Max will be manufactured with TSMC's latest, third-generation 3nm process called "N3P," analyst Jeff Pu said today, in a broader tech-related research note with Hong Kong-based investment bank Haitong. The current A18 and A18 Pro chips for the iPhone 16 lineup are manufactured with TSMC's second-generation 3nm process "N3E," while the A17 Pro chip in the iPhone 15 Pro models is manufactured with TSMC's first-generation 3nm process "N3B." "N3P" is considered a process "shrink" compared to N3E, meaning that chips manufactured with the newer process will have increased transistor density. While this comes as no surprise, it means that next year's iPhone 17 models should have modestly improved performance and power efficiency compared to iPhone 16 models. Previous reports indicated that TSMC would begin mass production of chips built with the N3P process in the second half of 2024. In 2026, Apple is expected to use TSMC's first 2nm process for A20 chips in iPhone 18 models.Related Roundup: iPhone 17Tag: Jeff PuThis article, "" first appeared on MacRumors.comDiscuss this article in our forums09:10 pmApple CEO Cook ‘probably relieved’ when President Trump won re-election – Gurman
Apple CEO and other top company executives were probably relieved when former President Donald Trump won reelection this month… The post appeared first on MacDailyNews.09:07 pm'iPhone 17 Air' Rumored to Surpass iPhone 6 as Thinnest iPhone Ever
In a research note with Hong Kong-based investment bank Haitong today, obtained by MacRumors, Apple analyst Jeff Pu said he agrees with a recent rumor claiming that the so-called "iPhone 17 Air" will be around 6mm thick. "We agreed with the recent chatter of an 6mm thickness ultra-slim design of the iPhone 17 Slim model," he wrote. If that measurement proves to be accurate, there would be a few noteworthy aspects. First, the iPhone 17 Air would become the thinnest iPhone ever, coming in under the current 6.9mm record held by the iPhone 6. Second, the iPhone 17 Air would be around three quarters as thick as any of the iPhone 16 and iPhone 16 Pro models. While some customers may have hoped that the iPhone 17 Air would be even thinner, there is obviously a limit to how thin the battery and other components can be. If the device comes in around 6mm, it would still be impressively thin and light compared to the increasingly bulkier models released over the past few years. Here is how the iPhone 17 Air's thickness could compare to other models: iPhone 16 Pro and Pro Max: 8.25mm iPhone 16 and 16 Plus: 7.8mm iPhone 15 Pro and Pro Max: 8.25mm iPhone 15 and 15 Plus: 7.8mm iPhone 14 Pro and Pro Max: 7.85mm iPhone 14 and 14 Plus: 7.8mm iPhone 13 Pro and Pro Max: 7.65mm iPhone 13 and 13 mini: 7.65mm iPhone 12 Pro and Pro Max: 7.4mm iPhone 12 and 12 mini: 7.4mm iPhone 11 Pro and Pro Max: 8.1mm iPhone 11: 8.3mm iPhone XS and XS Max: 7.7mm iPhone XR: 8.3mm iPhone X: 7.7mm iPhone 8 Plus: 7.5mm iPhone 8: 7.3mm iPhone 7 Plus: 7.3mm iPhone 7: 7.1mm iPhone 6s Plus: 7.3mm iPhone 6s: 7.1mm iPhone 6 Plus: 7.1mm iPhone 6: 6.9mm iPhone 17 Air rumor: 6mmAll models prior to the iPhone 6 were between 7.6mm and 12.3mm thick. While the iPhone 17 Air could be the thinnest iPhone ever, it would not be the thinnest Apple product ever. That record is held by the 2024 version of the 13-inch iPad Pro, which is just 5.1mm thick. In addition, the last iPod nano was 5.4mm thick. For those who have not been following iPhone 17 Air rumors, several credible sources have claimed that Apple plans to release a redesigned, significantly thinner iPhone 17 model next year. The device's name is not yet known, so we are referring to it as the iPhone 17 Air for now. Pu has gone with the nickname "iPhone 17 Slim" instead. There have been conflicting rumors about the design and specifications for the device, but most sources have agreed that it will have around a 6.6-inch display. In July, Apple supply chain analyst Ming-Chi Kuo said he expects the device to have a standard A19 chip, a Dynamic Island, a single rear camera, and an Apple-designed 5G modem. Last month, Pu agreed the iPhone 17 Air will have a 6.6-inch display. He also expects the device to feature an aluminum frame, Face ID, a single 48-megapixel rear camera, a 24-megapixel front camera, and 8GB of RAM for Apple Intelligence. Apple will likely unveil the iPhone 17 Air in September 2025, so the device is still far away from launching, and rumors could change over time.Related Roundup: iPhone 17This article, "" first appeared on MacRumors.comDiscuss this article in our forums08:25 pmApple ends iCloud backup support for iOS 8 and earlier on December 18
Owners of iPhones running on iOS 8 and earlier will soon lose the ability to use iCloud device backups, unless they update to iOS 9 or later.iCloud backup options in iOSAs a way to keep hold of your data, iCloud backups are extremely convenient to users, but it won't be usable by everyone. Apple has started to warn users of devices running on iOS 8 or earlier that it will stop working in one month's time.In a support document titled "How to keep your devices and data backed up in iOS 8 or earlier," first published on Monday and found by 9to5Mac, Apple advises that support will be curtailed for older iOS installations. From December 18, 2024, "device backups will require iOS 9 or later," the post states. Continue Reading on AppleInsider | Discuss on our Forums08:19 pmiOS 18.2 makes Camera Control the killer feature it was always meant to be
The iPhone 16’s Camera Control feature arrived to mixed reviews, including from me. But iOS 18.2 upgrades the feature in several key ways, making it what it was always meant to be. more…08:11 pmIOS Development as 2025 career
I want to invest in an macbook and aim for a ios developer job in 2025. Are ios developers still in demand? submitted by /u/BongB0ng [link] [comments]08:10 pmApple TV+ greenlights new Cape Fear’ series from Steven Spielberg and Martin Scorsese | Mac Daily NewsApple TV+ greenlights new Cape Fear’ series from Steven Spielberg and Martin Scorsese
Apple TV+ on Monday announced it will expand its award-winning original series slate with a series order for “Cape Fear,” a new series that… The post appeared first on MacDailyNews.08:06 pmGoodTimes – Das Netzwerk für Macher & gefesselte Zuschauer!
Bist du ein Player, der Adrenalin sucht und Herausforderungen meistert? Oder ein Watcher, der mitfiebert, Aufgaben stellt und Entscheidungen trifft? 🔥 Egal, ob du spielst oder zuschaust – GoodTimes bringt euch zusammen für epische Challenges und unvergessliche Momente. Lass uns ein Team gründen und dieses soziale Netzwerk schreiben! Hit me up submitted by […]07:58 pmRoast my ugly code
This function works and does exactly what it is supposed to be yet feels overcomplicated and it is a pain to modify something. Do you have any recommendations on how to logically split it up. func calculateStartingPoint( _ dataHandler: DataManager ) async throws -> ( tracks: [SendableStoredTrack], timeInterval: TimeInterval, startDate: Date, endDate: Date ) { […]07:43 pmTwilio Flex and Task Router Degraded Performance
Nov 18, 11:43 PSTResolved - Twilio Flex, including Task Router, was degraded for 10 minutes between 11:19 AM and 11:29 AM Pacific Time on 11/18/2024. During this period of time customers may have experienced issues related to initiating, routing, and wrapping up calls. The issue has now been resolved.07:40 pmtvOS 18.2 gains new Snoopy screensavers with latest developer beta
With the latest developer beta of tvOS 18.2, Apple has finally added Snoopy-themed screensavers for Apple TV. Here's what you need to know.Snoopy-themed screensavers are now available with tvOS 18.2 developer beta 3.On Monday, the company released the third developer betas of visionOS 2.2 and tvOS 18.2. While the Apple Vision Pro software doesn't appear to have any noteworthy additions, the tvOS developer beta includes all-new screensavers.Subscribe to AppleInsider on YouTube{"@context":"https://schema.org/","@type":"VideoObject","name":"Check out the new Snoopy screensavers on Apple TV in tvOS 18.2 beta!","description":"The new beta 3 of tvOS 18.2 finally added the new Snoopy screensavers to Apple TV! Check them out! ","thumbnailUrl":"https://i.ytimg.com/vi/40cVDoefRUU/sddefault.jpg","uploadDate":"2024-11-18T19:20:27Z","duration":"PT50S","embedUrl":"https://www.youtube.com/watch/?v=40cVDoefRUU"} Continue Reading on AppleInsider | Discuss on our Forums07:39 pmThe cheapest M4 MacBook Pro just dropped another $200 ahead of Black Friday
Macworld Are you ready for one of the best Black Friday deals you’re going to see on this year’s MacBook Pro laptops? Because you can get the 14-inch M4 MacBook Pro for $1,400 right now, a solid $200 discount from its MSRP and the best price we’ve ever seen. Just note, you’ll need to check the coupon box in the listing to get the full savings. The MacBook Pro is one we deemed to be “marvelous,” giving the laptop a near-perfect score in our review. Our editor praised the laptop’s display, the high-quality camera that’s perfect for all the video meetings you have to attend, and the fact that the laptop comes with 16GB of memory instead of 8GB, a $200 value based on Apple’s upgrade pricing. The M4 chip ensures your laptop is ready to tackle any job you want to perform. You’ll be fast, too. Our tests pointed to a 23 percent speed boost over the M3 and a whopping 80 percent faster than the M1. Plus it was built to withstand a whole day of work without needing a charger. It was also created to cater to Apple Intelligence and its varying tasks, like helping you write assignments, organize files, or simply search online for things you’re interested in. Don’t miss out on this amazing early Black Friday deal for the M4 MacBook Pro for $200 off. Get the super speedy M4 MacBook Pro for $1,400.Buy it now at Amazon07:34 pmVulnerability Summary for the Week of November 11, 2024
High Vulnerabilities PrimaryVendor -- Product Description Published CVSS Score Source Info 1000 Projects--Beauty Parlour Management System A vulnerability was found in 1000 Projects Beauty Parlour Management System 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /index.php. The manipulation of the argument name leads to sql injection. The attack can be launched remotely. The exploit has been disclosed to the public and may be used. 2024-11-12 7.3 CVE-2024-11100 1000 Projects--Beauty Parlour Management System A vulnerability classified as critical has been found in 1000 Projects Beauty Parlour Management System 1.0. This affects an unknown part of the file /admin/forgot-password.php. The manipulation of the argument email leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. 2024-11-15 7.3 CVE-2024-11257 1000 Projects--Beauty Parlour Management System A vulnerability classified as critical was found in 1000 Projects Beauty Parlour Management System 1.0. This vulnerability affects unknown code of the file /admin/index.php. The manipulation of the argument username leads to sql injection. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used. 2024-11-15 7.3 CVE-2024-11258 1000 Projects--Portfolio Management System MCA A vulnerability was found in 1000 Projects Portfolio Management System MCA 1.0 and classified as critical. This issue affects some unknown processing of the file /login.php. The manipulation of the argument username leads to sql injection. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. 2024-11-15 7.3 CVE-2024-11256 adobe -- after_effects After Effects versions 23.6.9, 24.6.2 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file. 2024-11-12 7.8 CVE-2024-47441 adobe -- after_effects After Effects versions 23.6.9, 24.6.2 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file. 2024-11-12 7.8 CVE-2024-47442 adobe -- after_effects After Effects versions 23.6.9, 24.6.2 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file. 2024-11-12 7.8 CVE-2024-47443 adobe -- illustrator Illustrator versions 28.7.1 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file. 2024-11-12 7.8 CVE-2024-45114 adobe -- illustrator Illustrator versions 28.7.1 and earlier are affected by a Heap-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file. 2024-11-12 7.8 CVE-2024-47450 adobe -- illustrator Illustrator versions 28.7.1 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file. 2024-11-12 7.8 CVE-2024-47451 adobe -- illustrator Illustrator versions 28.7.1 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file. 2024-11-12 7.8 CVE-2024-47452 adobe -- indesign InDesign Desktop versions ID18.5.2, ID19.5 and earlier are affected by a Heap-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file. 2024-11-12 7.8 CVE-2024-49507 adobe -- indesign InDesign Desktop versions ID18.5.2, ID19.5 and earlier are affected by a Heap-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file. 2024-11-12 7.8 CVE-2024-49508 adobe -- indesign InDesign Desktop versions ID18.5.3, ID19.5 and earlier are affected by a Heap-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file. 2024-11-12 7.8 CVE-2024-49509 adobe -- substance_3d_painter Substance3D - Painter versions 10.1.0 and earlier are affected by a Double Free vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file. 2024-11-12 7.8 CVE-2024-47426 adobe -- substance_3d_painter Substance3D - Painter versions 10.1.0 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file. 2024-11-12 7.8 CVE-2024-47427 adobe -- substance_3d_painter Substance3D - Painter versions 10.1.0 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file. 2024-11-12 7.8 CVE-2024-47428 adobe -- substance_3d_painter Substance3D - Painter versions 10.1.0 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file. 2024-11-12 7.8 CVE-2024-47429 adobe -- substance_3d_painter Substance3D - Painter versions 10.1.0 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file. 2024-11-12 7.8 CVE-2024-47430 adobe -- substance_3d_painter Substance3D - Painter versions 10.1.0 and earlier are affected by a Heap-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file. 2024-11-12 7.8 CVE-2024-47431 adobe -- substance_3d_painter Substance3D - Painter versions 10.1.0 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file. 2024-11-12 7.8 CVE-2024-47432 adobe -- substance_3d_painter Substance3D - Painter versions 10.1.0 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file. 2024-11-12 7.8 CVE-2024-47433 adobe -- substance_3d_painter Substance3D - Painter versions 10.1.0 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file. 2024-11-12 7.8 CVE-2024-47434 adobe -- substance_3d_painter Substance3D - Painter versions 10.1.0 and earlier are affected by an Untrusted Search Path vulnerability that might allow attackers to execute arbitrary code. If the application uses a search path to locate critical resources such as programs, then an attacker could modify that search path to point to a malicious program, which the targeted application would then execute. The problem extends to any type of critical resource that the application trusts. Exploitation of this issue requires user interaction in that a victim must open a malicious file. 2024-11-12 7.8 CVE-2024-49515 adobe -- substance_3d_painter Substance3D - Painter versions 10.1.0 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file. 2024-11-12 7.8 CVE-2024-49516 adobe -- substance_3d_painter Substance3D - Painter versions 10.1.0 and earlier are affected by a Heap-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file. 2024-11-12 7.8 CVE-2024-49517 adobe -- substance_3d_painter Substance3D - Painter versions 10.1.0 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file. 2024-11-12 7.8 CVE-2024-49518 adobe -- substance_3d_painter Substance3D - Painter versions 10.1.0 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file. 2024-11-12 7.8 CVE-2024-49519 adobe -- substance_3d_painter Substance3D - Painter versions 10.1.0 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file. 2024-11-12 7.8 CVE-2024-49520 adobe -- substance_3d_painter Substance3D - Painter versions 10.1.0 and earlier are affected by a Heap-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file. 2024-11-12 7.8 CVE-2024-49525 Adobe--Adobe Commerce Adobe Commerce versions 3.2.5 and earlier are affected by a Server-Side Request Forgery (SSRF) vulnerability that could lead to a security feature bypass. A low privileged attacker could exploit this vulnerability to send crafted requests from the vulnerable server to internal systems, which could result in the bypassing of security measures such as firewalls. Exploitation of this issue does not require user interaction. 2024-11-12 7.7 CVE-2024-49521 Adobe--Animate Animate versions 23.0.7, 24.0.4 and earlier are affected by a Use After Free vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file. 2024-11-12 7.8 CVE-2024-49526 Adobe--Animate Animate versions 23.0.7, 24.0.4 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file. 2024-11-12 7.8 CVE-2024-49528 Adobe--Photoshop Desktop Photoshop Desktop versions 24.7.3, 25.11 and earlier are affected by an Integer Underflow (Wrap or Wraparound) vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file. 2024-11-12 7.8 CVE-2024-49514 adonesevangelista -- agri-trading_online_shopping_system A business logic vulnerability exists in the Add to Cart function of itsourcecode Agri-Trading Online Shopping System 1.0, which allows remote attackers to manipulate the quant parameter when adding a product to the cart. By setting the quantity value to -0, an attacker can exploit a flaw in the application's total price calculation logic. This vulnerability causes the total price to be reduced to zero, allowing the attacker to add items to the cart and proceed to checkout. 2024-11-14 7.5 CVE-2024-50968 algolplus--Advanced Order Export For WooCommerce The Advanced Order Export For WooCommerce plugin for WordPress is vulnerable to PHP Object Injection in all versions up to, and including, 3.5.5 via deserialization of untrusted input during Order export when the "Try to convert serialized values" option is enabled. This makes it possible for unauthenticated attackers to inject a PHP Object. The additional presence of a POP chain allows attackers to delete arbitrary files on the server, which can easily lead to remote code execution when the right file is deleted (such as wp-config.php). 2024-11-13 8.1 CVE-2024-10828 amd -- ryzen_ai_software Improper input validation in the NPU driver could allow an attacker to supply a specially crafted pointer potentially leading to arbitrary code execution. 2024-11-12 7.8 CVE-2024-21974 amd -- ryzen_ai_software Improper input validation in the NPU driver could allow an attacker to supply a specially crafted pointer potentially leading to arbitrary code execution. 2024-11-12 7.8 CVE-2024-21975 AMD--AMD Cloud Manageability Service Software Incorrect default permissions in the AMD Cloud Manageability Service (ACMS) Software installation directory could allow an attacker to achieve privilege escalation potentially resulting in arbitrary code execution. 2024-11-12 7.3 CVE-2024-21939 AMD--AMD Management Console Incorrect default permissions in the AMD Management Console installation directory could allow an attacker to achieve privilege escalation potentially resulting in arbitrary code execution. 2024-11-12 7.3 CVE-2024-21957 AMD--AMD Management Plug-In for SCCM Incorrect default permissions in the AMD Management Plugin for the Microsoft® System Center Configuration Manager (SCCM) installation directory could allow an attacker to achieve privilege escalation, potentially resulting in arbitrary code execution. 2024-11-12 7.3 CVE-2024-21938 AMD--AMD Provisioning Console (APC) Software Incorrect default permissions in the AMD Provisioning Console installation directory could allow an attacker to achieve privilege escalation, potentially resulting in arbitrary code execution. 2024-11-12 7.3 CVE-2024-21958 AMD--AMD Ryzen AI Software Improper input validation in the NPU driver could allow an attacker to supply a specially crafted pointer potentially leading to arbitrary code execution. 2024-11-12 8.8 CVE-2024-21976 AMD--AMD Ryzen Master Monitoring SDK Incorrect default permissions in the AMD RyzenTM Master monitoring SDK installation directory could allow an attacker to achieve privilege escalation potentially resulting in arbitrary code execution. 2024-11-12 7.3 CVE-2024-21945 AMD--AMD Ryzen Master Utility for Overclocking Control Incorrect default permissions in the AMD RyzenTM Master Utility installation directory could allow an attacker to achieve privilege escalation potentially resulting in arbitrary code execution. 2024-11-12 7.3 CVE-2024-21946 AMD--AMD Software: PRO Edition Incorrect default permissions in the AMD HIP SDK installation directory could allow an attacker to achieve privilege escalation potentially resulting in arbitrary code execution. 2024-11-12 7.3 CVE-2024-21937 AMI--AptioV APTIOV contains a vulnerability in the BIOS where a user or attacker may cause an improper restriction of operations within the bounds of a memory buffer over the network. A successful exploitation of this vulnerability may lead to code execution outside of the intended System Management Mode. 2024-11-12 7.2 CVE-2024-42442 ampache -- ampache Ampache is a web based audio/video streaming application and file manager. This vulnerability exists in the interface section of the Ampache menu, where users can change "Custom URL - Logo". This section is not properly sanitized, allowing for the input of strings that can execute JavaScript. This issue has been addressed in version 7.0.1 and all users are advised to upgrade. There are no known workarounds for this vulnerability. 2024-11-11 9 CVE-2024-51490 ampache -- ampache Ampache is a web based audio/video streaming application and file manager. The current implementation of token parsing fails to properly validate CSRF tokens when activating or deactivating controllers. This vulnerability allows an attacker to exploit CSRF attacks, potentially enabling them to change website features that should only be managed by administrators through malicious requests. This issue has been addressed in version 7.0.1 and all users are advised to upgrade. There are no known workarounds for this vulnerability. 2024-11-11 8.1 CVE-2024-51484 ampache -- ampache Ampache is a web based audio/video streaming application and file manager. The current implementation of token parsing fails to properly validate CSRF tokens when activating or deactivating plugins. This vulnerability allows an attacker to exploit CSRF attacks, potentially enabling them to change website features that should only be managed by administrators through malicious requests. This issue has been addressed in version 7.0.1 and all users are advised to upgrade. There are no known workarounds for this vulnerability. 2024-11-11 8.1 CVE-2024-51485 ampache -- ampache Ampache is a web based audio/video streaming application and file manager. The vulnerability exists in the interface section of the Ampache menu, where users can change the "Custom URL?-?Favicon". This section is not properly sanitized, allowing for the input of strings that can execute JavaScript. This issue has been addressed in version 7.0.1 and all users are advised to upgrade. There are no known workarounds for this vulnerability. 2024-11-11 8.4 CVE-2024-51486 ampache -- ampache Ampache is a web based audio/video streaming application and file manager. The current implementation of token parsing fails to properly validate CSRF tokens when activating or deactivating catalog. This vulnerability allows an attacker to exploit CSRF attacks, potentially enabling them to change website features that should only be managed by administrators through malicious requests. This issue has been addressed in version 7.0.1 and all users are advised to upgrade. There are no known workarounds for this vulnerability. 2024-11-11 8.1 CVE-2024-51487 angeljudesuarez -- construction_management_system A SQL injection vulnerability in print.php of Itsourcecode Construction Management System 1.0 allows remote attackers to execute arbitrary SQL commands via the map_id parameter. 2024-11-13 7.2 CVE-2024-50971 angeljudesuarez -- construction_management_system A SQL injection vulnerability in printtool.php of Itsourcecode Construction Management System 1.0 allows remote attackers to execute arbitrary SQL commands via the borrow_id parameter. 2024-11-13 7.2 CVE-2024-50972 angeljudesuarez -- tailoring_management_system A vulnerability classified as critical was found in itsourcecode Tailoring Management System 1.0. This vulnerability affects unknown code of the file /incadd.php. The manipulation of the argument inccat/desc/date/amount leads to sql injection. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used. The initial researcher advisory only mentions the parameter "inccat" to be affected. But it must be assumed "desc", "date", and "amount" are affected as well. 2024-11-11 9.8 CVE-2024-11074 anisha -- job_recruitment A vulnerability, which was classified as critical, has been found in code-projects Job Recruitment 1.0. This issue affects some unknown processing of the file /activation.php. The manipulation of the argument e_hash leads to sql injection. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. 2024-11-11 9.8 CVE-2024-11076 anisha -- job_recruitment A vulnerability, which was classified as critical, was found in code-projects Job Recruitment 1.0. Affected is an unknown function of the file /index.php. The manipulation of the argument email leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. 2024-11-11 9.8 CVE-2024-11077 anisha -- job_recruitment A vulnerability was found in code-projects Job Recruitment 1.0 and classified as critical. This issue affects some unknown processing of the file /login.php. The manipulation of the argument email leads to sql injection. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. 2024-11-12 9.8 CVE-2024-11099 anisha -- job_recruitment A vulnerability was found in code-projects Job Recruitment up to 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file admin.php. The manipulation of the argument userid leads to sql injection. The attack can be launched remotely. The exploit has been disclosed to the public and may be used. 2024-11-12 8.8 CVE-2024-11127 Anthony Carbon--WDES Responsive Mobile Menu Deserialization of Untrusted Data vulnerability in Anthony Carbon WDES Responsive Mobile Menu allows Object Injection.This issue affects WDES Responsive Mobile Menu: from n/a through 5.3.18. 2024-11-16 9.8 CVE-2024-52414 Apache Software Foundation--Apache Airflow Apache Airflow versions before 2.10.3 contain a vulnerability that could expose sensitive configuration variables in task logs. This vulnerability allows DAG authors to unintentionally or intentionally log sensitive configuration variables. Unauthorized users could access these logs, potentially exposing critical data that could be exploited to compromise the security of the Airflow deployment. In version 2.10.3, secrets are now masked in task logs to prevent sensitive configuration variables from being exposed in the logging output. Users should upgrade to Airflow 2.10.3 or the latest version to eliminate this vulnerability. If you suspect that DAG authors could have logged the secret values to the logs and that your logs are not additionally protected, it is also recommended that you update those secrets. 2024-11-15 7.5 CVE-2024-45784 Apache Software Foundation--Apache CloudStack Account users in Apache CloudStack by default are allowed to register templates to be downloaded directly to the primary storage for deploying instances. Due to missing validation checks for KVM-compatible templates in CloudStack 4.0.0 through 4.18.2.4 and 4.19.0.0 through 4.19.1.2, an attacker that can register templates, can use them to deploy malicious instances on KVM-based environments and exploit this to gain access to the host filesystems that could result in the compromise of resource integrity and confidentiality, data loss, denial of service, and availability of KVM-based infrastructure managed by CloudStack. Users are recommended to upgrade to Apache CloudStack 4.18.2.5 or 4.19.1.3, or later, which addresses this issue. Additionally, all user-registered KVM-compatible templates can be scanned and checked that they are flat files that should not be using any additional or unnecessary features. For example, operators can run the following command on their file-based primary storage(s) and inspect the output. An empty output for the disk being validated means it has no references to the host filesystems; on the other hand, if the output for the disk being validated is not empty, it might indicate a compromised disk. However, bear in mind that (i) volumes created from templates will have references for the templates at first and (ii) volumes can be consolidated while migrating, losing their references to the templates. Therefore, the command execution for the primary storages can show both false positives and false negatives. for file in $(find /path/to/storage/ -type f -regex [a-f0-9-]*.*); do echo "Retrieving file [$file] info. If the output is not empty, that might indicate a compromised disk; check it carefully."; qemu-img info -U $file | grep file: ; printf "nn"; doneFor checking the whole template/volume features of each disk, operators can run the following command: for file in $(find /path/to/storage/ -type f -regex [a-f0-9-]*.*); do echo "Retrieving file [$file] info."; qemu-img info -U $file; printf "nn"; done 2024-11-12 8.5 CVE-2024-50386 Apache Software Foundation--Apache Traffic Server Unchecked return value can allow Apache Traffic Server to retain privileges on startup. This issue affects Apache Traffic Server: from 9.2.0 through 9.2.5, from 10.0.0 through 10.0.1. Users are recommended to upgrade to version 9.2.6 or 10.0.2, which fixes the issue. 2024-11-14 9.1 CVE-2024-50306 Apache Software Foundation--Apache Traffic Server Improper Input Validation vulnerability in Apache Traffic Server. This issue affects Apache Traffic Server: from 8.0.0 through 8.1.11, from 9.0.0 through 9.2.5. Users are recommended to upgrade to version 9.2.6, which fixes the issue, or 10.0.2, which does not have the issue. 2024-11-14 7.5 CVE-2024-38479 Apache Software Foundation--Apache Traffic Server Valid Host header field can cause Apache Traffic Server to crash on some platforms. This issue affects Apache Traffic Server: from 9.2.0 through 9.2.5. Users are recommended to upgrade to version 9.2.6, which fixes the issue, or 10.0.2, which does not have the issue. 2024-11-14 7.5 CVE-2024-50305 Arttia Creative--Datasets Manager by Arttia Creative Unrestricted Upload of File with Dangerous Type vulnerability in Arttia Creative Datasets Manager by Arttia Creative.This issue affects Datasets Manager by Arttia Creative: from n/a through 1.5. 2024-11-14 10 CVE-2024-52375 Autodesk--Installer A maliciously crafted DLL file when placed in temporary files and folders that are leveraged by the Autodesk Installer could lead to escalation of privileges to NT AUTHORITY/SYSTEM due to insecure privilege management. 2024-11-15 7.2 CVE-2024-9500 Avigilon--VideoIQ iCVR HD camera Avigilon - CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') 2024-11-14 7.5 CVE-2024-45253 axelkeller--GPX Viewer The GPX Viewer plugin for WordPress is vulnerable to arbitrary file creation due to a missing capability check and file type validation in the gpxv_file_upload() function in all versions up to, and including, 2.2.8. This makes it possible for authenticated attackers, with subscriber-level access and above, to create arbitrary files on the affected site's server which may make remote code execution possible. 2024-11-13 8.8 CVE-2024-10629 ays-pro--Chartify WordPress Chart Plugin The Chartify - WordPress Chart Plugin plugin for WordPress is vulnerable to Local File Inclusion in all versions up to, and including, 2.9.5 via the 'source' parameter. This makes it possible for unauthenticated attackers to include and execute arbitrary files on the server, allowing the execution of any PHP code in those files. This can be used to bypass access controls, obtain sensitive data, or achieve code execution in cases where images and other "safe" file types can be uploaded and included. 2024-11-14 9.8 CVE-2024-10571 Baxter--Life2000 Ventilation System The software tools used by service personnel to test & calibrate the ventilator do not support user authentication. An attacker with access to the Service PC where the tools are installed could obtain diagnostic information through the test tool or manipulate the ventilator's settings and embedded software via the calibration tool, without having to authenticate to either tool. This could result in unauthorized disclosure of information and/or have unintended impacts on device settings and performance. 2024-11-14 10 CVE-2024-48966 Baxter--Life2000 Ventilation System The ventilator and the Service PC lack sufficient audit logging capabilities to allow for detection of malicious activity and subsequent forensic examination. An attacker with access to the ventilator and/or the Service PC could, without detection, make unauthorized changes to ventilator settings that result in unauthorized disclosure of information and/or have unintended impacts on device performance. 2024-11-14 10 CVE-2024-48967 Baxter--Life2000 Ventilation System The ventilator's microcontroller lacks memory protection. An attacker could connect to the internal JTAG interface and read or write to flash memory using an off-the-shelf debugging tool, which could disrupt the function of the device and/or cause unauthorized information disclosure. 2024-11-14 9.3 CVE-2024-48970 Baxter--Life2000 Ventilation System The Clinician Password and Serial Number Clinician Password are hard-coded into the ventilator in plaintext form. This could allow an attacker to obtain the password off the ventilator and use it to gain unauthorized access to the device, with clinician privileges. 2024-11-14 9.3 CVE-2024-48971 Baxter--Life2000 Ventilation System The debug port on the ventilator's serial interface is enabled by default. This could allow an attacker to send and receive messages over the debug port (which are unencrypted; see 3.2.1) that result in unauthorized disclosure of information and/or have unintended impacts on device settings and performance. 2024-11-14 9.3 CVE-2024-48973 Baxter--Life2000 Ventilation System The ventilator does not perform proper file integrity checks when adopting firmware updates. This makes it possible for an attacker to force unauthorized changes to the device's configuration settings and/or compromise device functionality by pushing a compromised/illegitimate firmware file. This could disrupt the function of the device and/or cause unauthorized information disclosure. 2024-11-14 9.3 CVE-2024-48974 Baxter--Life2000 Ventilation System There is no limit on the number of failed login attempts permitted with the Clinician Password or the Serial Number Clinician Password. An attacker could execute a brute-force attack to gain unauthorized access to the ventilator, and then make changes to device settings that could disrupt the function of the device and/or result in unauthorized information disclosure. 2024-11-14 9.3 CVE-2024-9832 Baxter--Life2000 Ventilation System Improper data protection on the ventilator's serial interface could allow an attacker to send and receive messages that result in unauthorized disclosure of information and/or have unintended impacts on device settings and performance. 2024-11-14 9.3 CVE-2024-9834 BdThemes--Instant Image Generator Unrestricted Upload of File with Dangerous Type vulnerability in BdThemes Instant Image Generator allows Upload a Web Shell to a Web Server.This issue affects Instant Image Generator: from n/a through 1.5.4. 2024-11-14 10 CVE-2024-52377 Bigfive--CF7 Reply Manager Unrestricted Upload of File with Dangerous Type vulnerability in Bigfive CF7 Reply Manager.This issue affects CF7 Reply Manager: from n/a through 1.2.3. 2024-11-16 9.9 CVE-2024-52404 Bikram Joshi--B-Banner Slider Unrestricted Upload of File with Dangerous Type vulnerability in Bikram Joshi B-Banner Slider allows Upload a Web Shell to a Web Server.This issue affects B-Banner Slider: from n/a through 1.1. 2024-11-16 9.9 CVE-2024-52405 BlackBerry--SecuSUITE A code injection vulnerability in the SecuSUITE Server Web Administration Portal of SecuSUITE versions 5.0.420 and earlier could allow an attacker to potentially inject script commands or other executable content into the server that would run with root privilege. 2024-11-12 7.3 CVE-2024-51721 Boa web server--Boa web server 0.94.14rc21 Boa web server - CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') 2024-11-14 7.5 CVE-2024-47916 Bosch Rexroth AG--IndraDrive FWA-INDRV*-MP* A vulnerability in the PROFINET stack implementation of the IndraDrive (all versions) of Bosch Rexroth allows an attacker to cause a denial of service, rendering the device unresponsive by sending arbitrary UDP messages. 2024-11-13 7.5 CVE-2024-48989 Ciprian Popescu--W3P SEO Cross-Site Request Forgery (CSRF) vulnerability in Ciprian Popescu W3P SEO allows Stored XSS.This issue affects W3P SEO: from n/a before 1.8.6. 2024-11-14 7.1 CVE-2024-51684 Cisco--Cisco BroadWorks A vulnerability in the local interface of Cisco BroadWorks Network Server could allow an unauthenticated, remote attacker to exhaust system resources, causing a denial of service (DoS) condition.This vulnerability exists because rate limiting does not occur for certain incoming TCP connections. An attacker could exploit this vulnerability by sending a high rate of TCP connections to the server. A successful exploit could allow the attacker to cause TCP connection resources to grow rapidly until the Cisco BroadWorks Network Server becomes unusable.Note: To recover from this vulnerability, either Cisco BroadWorks Network Server software must be restarted or the Cisco BroadWorks Network Server node must be rebooted. For more information, see the section of this advisory.Cisco has released software updates that address this vulnerability. There are no workarounds that address this vulnerability. 2024-11-15 8.6 CVE-2023-20125 Cisco--Cisco Cyber Vision A vulnerability in the Modbus preprocessor of the Snort detection engine could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device.This vulnerability is due to an integer overflow while processing Modbus traffic. An attacker could exploit this vulnerability by sending crafted Modbus traffic through an affected device. A successful exploit could allow the attacker to cause the Snort process to hang, causing traffic inspection to stop.Cisco has released software updates that address this vulnerability. There are no workarounds that address this vulnerability. 2024-11-15 7.5 CVE-2022-20685 Cisco--Cisco Industrial Network Director A vulnerability in the web UI of Cisco IND could allow an authenticated, remote attacker to execute arbitrary commands with administrative privileges on the underlying operating system of an affected device.This vulnerability is due to improper input validation when uploading a Device Pack. An attacker could exploit this vulnerability by altering the request that is sent when uploading a Device Pack. A successful exploit could allow the attacker to execute arbitrary commands as NT AUTHORITYSYSTEM on the underlying operating system of an affected device.Cisco has released software updates that address this vulnerability. There are no workarounds that address this vulnerability. 2024-11-15 9.9 CVE-2023-20036 Cisco--Cisco IOS XR Software A vulnerability in the implementation of the CLI on a device that is running ConfD could allow an authenticated, local attacker to perform a command injection attack.The vulnerability is due to insufficient validation of a process argument on an affected device. An attacker could exploit this vulnerability by injecting commands during the execution of this process. A successful exploit could allow the attacker to execute arbitrary commands on the underlying operating system with the privilege level of ConfD, which is commonly root. 2024-11-15 8.8 CVE-2022-20655 Cisco--Cisco Modeling Labs A vulnerability in the external authentication mechanism of Cisco Modeling Labs could allow an unauthenticated, remote attacker to access the web interface with administrative privileges.This vulnerability is due to the improper handling of certain messages that are returned by the associated external authentication server. An attacker could exploit this vulnerability by logging in to the web interface of an affected server. Under certain conditions, the authentication mechanism would be bypassed and the attacker would be logged in as an administrator. A successful exploit could allow the attacker to obtain administrative privileges on the web interface of an affected server, including the ability to access and modify every simulation and all user-created data. To exploit this vulnerability, the attacker would need valid user credentials that are stored on the associated external authentication server.Cisco has released software updates that address this vulnerability. There are workarounds that address this vulnerability. 2024-11-15 9.1 CVE-2023-20154 Cisco--Cisco Redundancy Configuration Manager A vulnerability in Cisco RCM for Cisco StarOS Software could allow an unauthenticated, remote attacker to perform remote code execution on the application with root-level privileges in the context of the configured container.This vulnerability exists because the debug mode is incorrectly enabled for specific services. An attacker could exploit this vulnerability by connecting to the device and navigating to the service with debug mode enabled. A successful exploit could allow the attacker to execute arbitrary commands as the root user.The attacker would need to perform detailed reconnaissance to allow for unauthenticated access. The vulnerability can also be exploited by an authenticated attacker.Cisco has released software updates that address this vulnerability. There are no workarounds that address this vulnerability. 2024-11-15 8.1 CVE-2022-20649 Cisco--Cisco TelePresence Video Communication Server (VCS) Expressway A vulnerability in the certificate validation of Cisco Expressway-C and Cisco TelePresence VCS could allow an unauthenticated, remote attacker to gain unauthorized access to sensitive data. The vulnerability is due to a lack of validation of the SSL server certificate that an affected device receives when it establishes a connection to a Cisco Unified Communications Manager device. An attacker could exploit this vulnerability by using a man-in-the-middle technique to intercept the traffic between the devices, and then using a self-signed certificate to impersonate the endpoint. A successful exploit could allow the attacker to view the intercepted traffic in clear text or alter the contents of the traffic.Note: Cisco Expressway-E is not affected by this vulnerability.Cisco has released software updates that address this vulnerability. There are no workarounds that address this vulnerability. 2024-11-15 7.4 CVE-2022-20814 Cisco--Cisco TelePresence Video Communication Server (VCS) Expressway A vulnerability in the REST API of Cisco Expressway Series and Cisco TelePresence VCS could allow an unauthenticated, remote attacker to conduct a cross-site request forgery (CSRF) attack on an affected system.This vulnerability is due to insufficient CSRF protections for the web-based management interface of an affected system. An attacker could exploit this vulnerability by persuading a user of the REST API to follow a crafted link. A successful exploit could allow the attacker to cause the affected system to reload.Cisco has released software updates that address this vulnerability. There are no workarounds that address this vulnerability. 2024-11-15 7.4 CVE-2022-20853 Citrix Session Recording--Citrix Session Recording Limited remote code execution with privilege of a NetworkService Account access in Citrix Session Recording if the attacker is an authenticated user on the same intranet as the session recording server 2024-11-12 8.8 CVE-2024-8069 Clarisse K.--Writer Helper Unrestricted Upload of File with Dangerous Type vulnerability in Clarisse K. Writer Helper allows Upload a Web Shell to a Web Server.This issue affects Writer Helper: from n/a through 3.1.6. 2024-11-16 9.9 CVE-2024-52399 cli--cli The GitHub CLI version 2.6.1 and earlier are vulnerable to remote code execution through a malicious codespace SSH server when using `gh codespace ssh` or `gh codespace logs` commands. This has been patched in the cli v2.62.0. Developers connect to remote codespaces through an SSH server running within the devcontainer, which is generally provided through the [default devcontainer image]( https://docs.github.com/en/codespaces/setting-up-your-project-for-codespaces/adding-a-dev-container-... https://docs.github.com/en/codespaces/setting-up-your-project-for-codespaces/adding-a-dev-container-configuration/introduction-to-dev-containers#using-the-default-dev-container-configuration) . GitHub CLI [retrieves SSH connection details]( https://github.com/cli/cli/blob/30066b0042d0c5928d959e288144300cb28196c9/internal/codespaces/rpc/inv... https://github.com/cli/cli/blob/30066b0042d0c5928d959e288144300cb28196c9/internal/codespaces/rpc/invoker.go#L230-L244 ), such as remote username, which is used in [executing `ssh` commands]( https://github.com/cli/cli/blob/e356c69a6f0125cfaac782c35acf77314f18908d/pkg/cmd/codespace/ssh.go#L2... https://github.com/cli/cli/blob/e356c69a6f0125cfaac782c35acf77314f18908d/pkg/cmd/codespace/ssh.go#L263 ) for `gh codespace ssh` or `gh codespace logs` commands. This exploit occurs when a malicious third-party devcontainer contains a modified SSH server that injects `ssh` arguments within the SSH connection details. `gh codespace ssh` and `gh codespace logs` commands could execute arbitrary code on the user's workstation if the remote username contains something like `-oProxyCommand="echo hacked" #`. The `-oProxyCommand` flag causes `ssh` to execute the provided command while `#` shell comment causes any other `ssh` arguments to be ignored. In `2.62.0`, the remote username information is being validated before being used. 2024-11-14 8 CVE-2024-52308 cmorillas1--External Database Based Actions The External Database Based Actions plugin for WordPress is vulnerable to authentication bypass in versions up to, and including, 0.1. This is due to a missing capability check in the 'edba_admin_handle' function. This makes it possible for authenticated attackers, with subscriber-level permissions and above, to update the plugin settings and log in as any existing user on the site, such as an administrator. 2024-11-15 7.5 CVE-2024-10311 cmsMinds--Boat Rental Plugin for WordPress Unrestricted Upload of File with Dangerous Type vulnerability in cmsMinds Boat Rental Plugin for WordPress allows Upload a Web Shell to a Web Server.This issue affects Boat Rental Plugin for WordPress: from n/a through 1.0.1. 2024-11-14 10 CVE-2024-52376 code-projects--Job Recruitment A vulnerability was found in code-projects Job Recruitment 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file reset.php. The manipulation of the argument e leads to sql injection. The attack can be launched remotely. The exploit has been disclosed to the public and may be used. 2024-11-15 7.3 CVE-2024-11241 codeSavory--BasePress Migration Tools Unrestricted Upload of File with Dangerous Type vulnerability in codeSavory BasePress Migration Tools allows Upload a Web Shell to a Web Server.This issue affects BasePress Migration Tools: from n/a through 1.0.0. 2024-11-16 9.9 CVE-2024-52407 craftcms--cms Craft is a content management system (CMS). A vulnerability in CraftCMS allows an attacker to bypass local file system validation by utilizing a double file:// scheme (e.g., file://file:////). This enables the attacker to specify sensitive folders as the file system, leading to potential file overwriting through malicious uploads, unauthorized access to sensitive files, and, under certain conditions, remote code execution (RCE) via Server-Side Template Injection (SSTI) payloads. Note that this will only work if you have an authenticated administrator account with allowAdminChanges enabled. This is fixed in 5.4.6 and 4.12.5. 2024-11-13 8.4 CVE-2024-52291 craftcms--cms Craft is a content management system (CMS). The dataUrl function can be exploited if an attacker has write permissions on system notification templates. This function accepts an absolute file path, reads the file's content, and converts it into a Base64-encoded string. By embedding this function within a system notification template, the attacker can exfiltrate the Base64-encoded file content through a triggered system email notification. Once the email is received, the Base64 payload can be decoded, allowing the attacker to read arbitrary files on the server. This is fixed in 5.4.9 and 4.12.8. 2024-11-13 7.7 CVE-2024-52292 craftcms--cms Craft is a content management system (CMS). Prior to 4.12.2 and 5.4.3, Craft is missing normalizePath in the function FileHelper::absolutePath could lead to Remote Code Execution on the server via twig SSTI. This is a sequel to CVE-2023-40035. This vulnerability is fixed in 4.12.2 and 5.4.3. 2024-11-13 7.2 CVE-2024-52293 creativeinteractivemedia--Real3D Flipbook Lite 3D FlipBook, PDF Viewer, PDF Embedder The 3D FlipBook, PDF Viewer, PDF Embedder - Real 3D FlipBook WordPress Plugin plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the 'r3dfb_save_thumbnail_callback' function in all versions up to, and including, 4.6. This makes it possible for authenticated attackers, with Author-level access and above, to upload arbitrary files on the affected site's server which may make remote code execution possible. 2024-11-16 8.8 CVE-2024-9849 cyberlord92--Login using WordPress Users ( WP as SAML IDP ) The Login using WordPress Users ( WP as SAML IDP ) plugin for WordPress is vulnerable to time-based SQL Injection via the 'id' parameter in all versions up to, and including, 1.15.6 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. This makes it possible for authenticated attackers, with Administrator-level access and above, to append additional SQL queries into already existing queries that can be used to extract sensitive information from the database. 2024-11-16 7.2 CVE-2024-9887 Dang Ngoc Binh--Audio Record Unrestricted Upload of File with Dangerous Type vulnerability in Dang Ngoc Binh Audio Record allows Upload a Web Shell to a Web Server.This issue affects Audio Record: from n/a through 1.0. 2024-11-11 10 CVE-2024-51792 Davor Zeljkovic--Convert Docx2post Unrestricted Upload of File with Dangerous Type vulnerability in Davor Zeljkovic Convert Docx2post allows Upload a Web Shell to a Web Server.This issue affects Convert Docx2post: from n/a through 1.4. 2024-11-16 9.1 CVE-2024-52397 decidim--decidim Decidim is a participatory democracy framework. The meeting embeds feature used in the online or hybrid meetings is subject to potential XSS attack through a malformed URL. This vulnerability is fixed in 0.28.3 and 0.29.0. 2024-11-13 7.7 CVE-2024-45594 decidim-ice--decidim-module-decidim_awesome An improper neutralization of special elements used in an SQL command in the papertrail/version- model of the decidim_awesome-module 0.9.0) allows an authenticated admin user to manipulate sql queries to disclose information, read and write files or execute commands. 2024-11-12 9 CVE-2024-43415 dell -- smartfabric_os10 Dell SmartFabric OS10 Software, version(s) 10.5.6.x, 10.5.5.x, 10.5.4.x, 10.5.3.x, contain(s) an Improper Neutralization of Special Elements used in a Command ('Command Injection') vulnerability. A low privileged attacker with local access could potentially exploit this vulnerability, leading to Code execution. 2024-11-12 7.8 CVE-2024-49557 dell -- smartfabric_os10 Dell SmartFabric OS10 Software, version(s) 10.5.6.x, 10.5.5.x, 10.5.4.x, 10.5.3.x, contain(s) an Improper Privilege Management vulnerability. A low privileged attacker with local access could potentially exploit this vulnerability, leading to Elevation of privileges. 2024-11-12 7.8 CVE-2024-49558 dell -- smartfabric_os10 Dell SmartFabric OS10 Software, version(s) 10.5.6.x, 10.5.5.x, 10.5.4.x, 10.5.3.x, contain(s) a command injection vulnerability. A low privileged attacker with local access could potentially exploit this vulnerability, leading to Command execution. 2024-11-12 7.8 CVE-2024-49560 Dell--SmartFabric OS10 Software Dell SmartFabric OS10 Software, version(s) 10.5.6.x, 10.5.5.x, 10.5.4.x, 10.5.3.x, contain(s) an Execution with Unnecessary Privileges vulnerability. A low privileged attacker with local access could potentially exploit this vulnerability, leading to Command execution 2024-11-12 7.8 CVE-2024-48837 Delta Electronics--DIAScreen If an attacker tricks a valid user into running Delta Electronics DIAScreen with a file containing malicious code, a stack-based buffer overflow in CEtherIPTagItem can be exploited, allowing the attacker to remotely execute arbitrary code. 2024-11-11 7.8 CVE-2024-39354 Delta Electronics--DIAScreen If an attacker tricks a valid user into running Delta Electronics DIAScreen with a file containing malicious code, a stack-based buffer overflow in BACnetParameter can be exploited, allowing the attacker to remotely execute arbitrary code. 2024-11-11 7.8 CVE-2024-39605 Delta Electronics--DIAScreen If an attacker tricks a valid user into running Delta Electronics DIAScreen with a file containing malicious code, a stack-based buffer overflow in BACnetObjectInfo can be exploited, allowing the attacker to remotely execute arbitrary code. 2024-11-11 7.8 CVE-2024-47131 dlink -- dsl6740c_firmware The D-Link DSL6740C modem has an Incorrect Use of Privileged APIs vulnerability, allowing unauthenticated remote attackers to modify any user's password by leveraging the API, thereby granting access to Web, SSH, and Telnet services using that user's account. 2024-11-11 9.8 CVE-2024-11068 dlink -- dsl6740c_firmware The D-Link DSL6740C modem has an OS Command Injection vulnerability, allowing remote attackers with administrator privileges to inject and execute arbitrary system commands through a specific functionality provided by SSH and Telnet. 2024-11-11 7.2 CVE-2024-11062 dlink -- dsl6740c_firmware The D-Link DSL6740C modem has an OS Command Injection vulnerability, allowing remote attackers with administrator privileges to inject and execute arbitrary system commands through a specific functionality provided by SSH and Telnet. 2024-11-11 7.2 CVE-2024-11063 dlink -- dsl6740c_firmware The D-Link DSL6740C modem has an OS Command Injection vulnerability, allowing remote attackers with administrator privileges to inject and execute arbitrary system commands through a specific functionality provided by SSH and Telnet. 2024-11-11 7.2 CVE-2024-11064 dlink -- dsl6740c_firmware The D-Link DSL6740C modem has an OS Command Injection vulnerability, allowing remote attackers with administrator privileges to inject and execute arbitrary system commands through a specific functionality provided by SSH and Telnet. 2024-11-11 7.2 CVE-2024-11065 dlink -- dsl6740c_firmware The D-Link DSL6740C modem has an OS Command Injection vulnerability, allowing remote attackers with administrator privileges to inject and execute arbitrary system commands through the specific web page. 2024-11-11 7.2 CVE-2024-11066 dlink -- dsl6740c_firmware The D-Link DSL6740C modem has a Path Traversal Vulnerability, allowing unauthenticated remote attackers to exploit this vulnerability to read arbitrary system files. Additionally, since the device's default password is a combination of the MAC address, attackers can obtain the MAC address through this vulnerability and attempt to log in to the device using the default password. 2024-11-11 7.5 CVE-2024-11067 DMC--Airin Blog Deserialization of Untrusted Data vulnerability in DMC Airin Blog allows Object Injection.This issue affects Airin Blog: from n/a through 1.6.1. 2024-11-16 9.8 CVE-2024-52413 DonnellC--Global Gateway e4 | Payeezy Gateway Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in DonnellC Global Gateway e4 | Payeezy Gateway.This issue affects Global Gateway e4 | Payeezy Gateway: from n/a through 2.0. 2024-11-14 8.6 CVE-2024-52371 DoThatTask--Do That Task Unrestricted Upload of File with Dangerous Type vulnerability in DoThatTask Do That Task allows Upload a Web Shell to a Web Server.This issue affects Do That Task: from n/a through 1.5.5. 2024-11-14 10 CVE-2024-52374 dotnetzip.semverd_project -- dotnetzip.semverd Directory Traversal vulnerability in DotNetZip v.1.16.0 and before allows a remote attacker to execute arbitrary code via the src/Zip.Shared/ZipEntry.Extract.cs component NOTE: This vulnerability only affects products that are no longer supported by the maintainer. 2024-11-13 9.8 CVE-2024-48510 Elastic--Kibana A deserialization issue in Kibana can lead to arbitrary code execution when Kibana attempts to parse a YAML document containing a crafted payload. A successful attack requires a malicious user to have a combination of both specific Elasticsearch indices privileges https://www.elastic.co/guide/en/elasticsearch/reference/current/defining-roles.html#roles-indices-priv  and Kibana privileges https://www.elastic.co/guide/en/fleet/current/fleet-roles-and-privileges.html  assigned to them. The following Elasticsearch indices permissions are required * write privilege on the system indices .kibana_ingest** The allow_restricted_indices flag is set to true Any of the following Kibana privileges are additionally required * Under Fleet the All privilege is granted* Under Integration the Read or All privilege is granted* Access to the fleet-setup privilege is gained through the Fleet Server's service account token 2024-11-14 9.1 CVE-2024-37285 Eugen Bobrowski--Debug Tool Missing Authorization vulnerability in Eugen Bobrowski Debug Tool allows Upload a Web Shell to a Web Server.This issue affects Debug Tool: from n/a through 2.2. 2024-11-16 10 CVE-2024-52416 Flowcraft UX Design Studio--Advanced Personalization Deserialization of Untrusted Data vulnerability in Flowcraft UX Design Studio Advanced Personalization allows Object Injection.This issue affects Advanced Personalization: from n/a through 1.1.2. 2024-11-16 9.8 CVE-2024-52411 fortinet -- forticlient A privilege context switching error vulnerability [CWE-270] in FortiClient Windows version 7.2.4 and below, version 7.0.12 and below, 6.4 all versions may allow an authenticated user to escalate their privileges via lua auto patch scripts. 2024-11-12 8.8 CVE-2024-36513 fortinet -- forticlient A untrusted search path in Fortinet FortiClientWindows versions 7.4.0, versions 7.2.4 through 7.2.0, versions 7.0.12 through 7.0.0 allows an attacker to run arbitrary code via DLL hijacking and social engineering. 2024-11-12 7.8 CVE-2024-36507 Fortinet--FortiClientWindows A authentication bypass using an alternate path or channel in Fortinet FortiClientWindows version 7.4.0, versions 7.2.4 through 7.2.0, versions 7.0.12 through 7.0.0, and 6.4.10 through 6.4.0 allows low privilege attacker to execute arbitrary code with high privilege via spoofed named pipe messages. 2024-11-13 7.8 CVE-2024-47574 Fortinet--FortiManager A client-side enforcement of server-side security in Fortinet FortiAnalyzer-BigDataat least version 7.4.0 and 7.2.0 through 7.2.6 and 7.0.1 through 7.0.6 and 6.4.5 through 6.4.7 and 6.2.5, FortiManager version 7.4.0 through 7.4.1 and 7.2.0 through 7.2.4 and 7.0.0 through 7.0.11 and 6.4.0 through 6.4.14, FortiAnalyzer version 7.4.0 through 7.4.1 and 7.2.0 through 7.2.4 and 7.0.0 through 7.0.11 and 6.4.0 through 6.4.14 allows attacker to improper access control via crafted requests. 2024-11-12 7.5 CVE-2024-23666 Fortinet--FortiOS A session fixation in Fortinet FortiOS version 7.4.0 through 7.4.3 and 7.2.0 through 7.2.7 and 7.0.0 through 7.0.13 allows attacker to execute unauthorized code or commands via phishing SAML authentication link. 2024-11-12 7.5 CVE-2023-50176 FraudLabs Pro--FraudLabs Pro SMS Verification Cross-Site Request Forgery (CSRF) vulnerability in FraudLabs Pro FraudLabs Pro SMS Verification allows Stored XSS.This issue affects FraudLabs Pro SMS Verification: from n/a through 1.10.1. 2024-11-14 7.1 CVE-2024-51688 FreeBSD--FreeBSD The fetch(3) library uses environment variables for passing certain information, including the revocation file pathname. The environment variable name used by fetch(1) to pass the filename to the library was incorrect, in effect ignoring the option. Fetch would still connect to a host presenting a certificate included in the revocation file passed to the --crl option. 2024-11-12 7.5 CVE-2024-45289 GeekRMX--Twitter @Anywhere Plus Cross-Site Request Forgery (CSRF) vulnerability in GeekRMX Twitter @Anywhere Plus allows Stored XSS.This issue affects Twitter @Anywhere Plus: from n/a through 2.0. 2024-11-14 7.1 CVE-2024-51659 GentleSource--Appointmind Cross-Site Request Forgery (CSRF) vulnerability in GentleSource Appointmind allows Stored XSS.This issue affects Appointmind: from n/a through 4.0.0. 2024-11-14 7.1 CVE-2024-51679 GeoVision--GV-VS12 Certain EOL GeoVision devices have an OS Command Injection vulnerability. Unauthenticated remote attackers can exploit this vulnerability to inject and execute arbitrary system commands on the device. Moreover, this vulnerability has already been exploited by attackers, and we have received related reports. 2024-11-15 9.8 CVE-2024-11120 GitLab--GitLab An issue was discovered in GitLab CE/EE affecting all versions starting from 16.0 prior to 17.3.7, starting from 17.4 prior to 17.4.4, and starting from 17.5 prior to 17.5.2, which could have allowed unauthorized access to the Kubernetes agent in a cluster under specific configurations. 2024-11-14 8.5 CVE-2024-9693 glpi-project--glpi GLPI is a free asset and IT management software package. An authenticated user can exploit multiple SQL injection vulnerabilities. One of them can be used to alter another user account data and take control of it. Upgrade to 10.0.17. 2024-11-15 8.1 CVE-2024-40638 gogs--gogs/gogs A remote command execution vulnerability exists in gogs/gogs versions07:22 pmIAD (Ashburn) on 2024-11-19
THIS IS A SCHEDULED EVENT Nov 19, 13:00 UTC - Nov 20, 01:00 UTCNov 18, 19:06 UTCScheduled - We will be performing scheduled maintenance in IAD (Ashburn) datacenter between 2024-11-19 13:00 and 2024-11-20 01:00 UTC.Traffic might be re-routed from this location, hence there is a possibility of a slight increase in latency during this maintenance window for end-users in the affected region. For PNI / CNI customers connecting with us in this location, please make sure you are expecting this traffic to fail over elsewhere during this maintenance window as network interfaces in this datacentre may become temporarily unavailable.You can now subscribe to these notifications via Cloudflare dashboard and receive these updates directly via email, PagerDuty and webhooks (based on your plan): https://developers.cloudflare.com/notifications/notification-available/#cloudflare-status.07:15 pmCDN mTLS certificate issue
Nov 18, 19:15 UTCMonitoring - A fix for this issue has been applied and we are currently monitoring the results.Nov 18, 19:05 UTCIdentified - Custom certificates used for mTLS with customer origins fails to load. This issue will cause customer's origin servers to reject these connections due to lack of certificates. We are currently working on a fix for this issue.07:15 pmiCloud backups will be deleted and discontinued for iPhones running iOS 8 and older
Apple has started notifying users running older software about a very compelling reason to update. iCloud backups will soon stop working—and even be deleted—on devices running iOS 8 and prior. more…07:02 pmApple looks to be discontinuing Lightning adapter for iPhones and wired headphones
It appears that Apple is discontinuing the Lightning to 3.5mm headphone jack adapter that's been around since the release of the iPhone 7… The post appeared first on MacDailyNews.07:00 pmMagSafe Monday: Reviewing the Baseus Nomos 8-in-1 magnetic charging station – the ultimate all-in-one power solution | 9 to 5 MacMagSafe Monday: Reviewing the Baseus Nomos 8-in-1 magnetic charging station – the ultimate all-in-one power solution
The perfect charging setup is a powerful and space-saving solution. The n aims to meet that demand with wired and wireless charging capabilities. With support for Qi2-certified 15W wireless charging and a 67W PD USB-C port, this slim, foldable station is a convenient and efficient way to power up everything from a MacBook Air to an iPhone 15. I recently tested this charging station to see if it lives up to its promise of flexibility and high performance. more…06:57 pmtvOS 18.2 beta 3 adds new Snoopy screensaver to Apple TV
Back at WWDC 2024 in June, Apple teased new screensavers for Apple TV with tvOS 18, including screensavers based on popular Apple TV+ movies and shows. Now Apple is finally rolling out one of these screensavers with the latest beta of tvOS 18.2, starting with Snoopy. more…06:56 pmJavier Bardem set to terrorize Apple TV+’s reimagined Cape Fear
Javier Bardem in "Cape Fear?" Yes, the talented Spaniard plays a good psycho. His Max Cady in Apple TV+'s new series should thrill and chill. (via Cult of Mac - Apple news, rumors, reviews and how-tos)06:55 pmDoorDash delivers convenience with Apple Reminders integration
DoorDash now lets you import grocery lists straight from Apple's Reminders app, making things a little less chaotic when trying to juggle holiday responsibilities.iPhone 15The new integration lets iOS users import their grocery lists from the Reminders app into DoorDash, automatically adding items to their shopping cart. For those without iOS, there's also the option to paste a list directly into the app.The update is part of a larger effort by DoorDash to make shopping more convenient for the holidays. A redesigned shopping experience lets users search for items across multiple retailers, comparing prices and delivery times at a glance. Continue Reading on AppleInsider | Discuss on our Forums06:55 pmApple Intelligence on M1 chips happened because of a key 2017 decision, Apple says
Apple Intelligence is made possible by Apple’s silicon efforts as a whole, as a new interview reveals. And apparently, those efforts took a big shift all the way back in 2017 in preparation for AI. more…06:47 pmLatest tvOS 18.2 Beta Adds Snoopy Screensavers
The third beta of tvOS 18.2 that Apple provided to developers today adds a selection of new Snoopy screen savers that can be set as an alternative to the aerial, memory, and portrait screen saver options. Apple first announced the Snoopy screen savers way back in June when tvOS 18 was first unveiled, but there has been no sign of them since then. With tvOS 18.2, Snoopy fans will finally be able to set Snoopy as their screen saver. Apple has an existing partnership with Peanuts, and there is already a Snoopy watch face available on the Apple Watch. Peanut specials and classic episodes are also available on Apple TV+.Related Roundup: Apple TVBuyer's Guide: Apple TV (Don't Buy)Related Forum: Apple TV and Home TheaterThis article, "" first appeared on MacRumors.comDiscuss this article in our forums06:39 pmApple Dropping Support for iCloud Backups on iPhones and iPads Running iOS 8 and Earlier | MacRumorsApple Dropping Support for iCloud Backups on iPhones and iPads Running iOS 8 and Earlier
Starting next month, making a device backup over iCloud will require iOS 9 or later, Apple has informed some customers via email. New backups for iPhones and iPads running iOS 8 or earlier will no longer be supported, and Apple will delete all existing iCloud backups of those devices as well. Apps and data stored on an iPhone or iPad running iOS 8 or earlier will not be affected, and Apple says that customers can still manually back up their devices to a Mac or a Windows PC. I just got this email from Apple pic.twitter.com/HkFRO8Jmsh— Nicolás Alvarez (@nicolas09F9) November 18, 2024 These iCloud backup changes will be made on December 18, 2024, so customers who have a device running iOS 8 or earlier should update to the latest available version of iOS if possible in order to continue to be able to back up their devices. According to Apple, iCloud backups for older devices are being discontinued in order to "more closely align" with Apple's "published minimum software requirements." With iOS 9, Apple adopted CloudKit for iCloud backups rather than the prior system, and it seems that the company is now discontinuing the old backup system.This article, "" first appeared on MacRumors.comDiscuss this article in our forums06:38 pmApple seeds third betas of tvOS 18.2 and visionOS 2.2
Apple has handed out the third developer betas of tvOS 18.2 and visionOS 2.2 for testing, as a fourth general beta round looms.An Apple Vision Pro, which runs visionOS 2.2Monday's developer beta collection was unusual, as it consisted of just two. This time, tvOS and visionOS were the subjects for the latest testing by the Apple developer beta testing program.The third tvOS 18.2 beta build is number 22K5148a, while the third visionOS 2.2 build is 22N5794a. The second build of tvOS was issued on November 11, while the second visionOS 2.2 build was provided on November 12. Continue Reading on AppleInsider | Discuss on our Forums06:15 pmApple Seeds Third Beta of tvOS 18.2 to Developers
Apple today seeded the third beta of an upcoming tvOS 18.2 update to developers for testing purposes, with the beta coming a week after second tvOS 18.2 beta. Registered developers are able to download the tvOS 18.2 update by opting in to the beta through the Settings app on the Apple TV. A registered developer account is required. tvOS 18.2 adds improved support for projectors with a 21:9 aspect ratio and several other aspect ratio options to choose from. The update allows the Apple TV to automatically detect the aspect ratio of your device, selecting the correct setting.Related Roundup: Apple TVBuyer's Guide: Apple TV (Don't Buy)Related Forum: Apple TV and Home TheaterThis article, "" first appeared on MacRumors.comDiscuss this article in our forums06:13 pmApple releases beta 3 for visionOS 2.2 and tvOS 18.2
Apple is rolling out the latest developer betas for visionOS 2.2 and tvOS 18.2. Beta 3 arrives not long after last week’s beta 2 releases, and brings the latest refinements to these upcoming software updates. more…06:13 pmApple’s headphone adapter for older iPhones sells out, possibly never to return
The end of Lightning is nigh. It's a bummer for folks with older phones, though.06:11 pmApple Seeds Third Beta of visionOS 2.2 to Developers With Ultrawide Mac Virtual Display
Apple today seeded the third beta of an upcoming visionOS 2.2 update to developers for testing purposes, with the beta coming a week after the second visionOS 2.2 beta. visionOS 2.2 can be installed by going to the Software Update section of the Settings app on the Vision Pro and opting into Beta Updates. The visionOS 2.2 update adds a new feature for the Mac Virtual Display option, allowing it to be set to Wide and Ultrawide. The Ultrawide setting is equivalent to two 4K displays side-by-side, and it is a notable improvement over the current Mac Virtual Display that's available in visionOS 2.1. The Mac Virtual Display allows the Vision Pro to be connected to a Mac with the Vision Pro serving as the display for the machine. The virtual Mac desktop works just like a standard desktop with an external display, but Vision Pro does not support multiple displays. As a solution, Apple has added the option for a wider display to maximize space.Related Roundup: visionOS 2Related Forum: Apple Vision ProThis article, "" first appeared on MacRumors.comDiscuss this article in our forums06:03 pmApple Intelligence notification summaries are honestly pretty bad
Summaries are often wrong, usually odd, sometimes funny, rarely helpful.06:00 pmApple ramps up satellite investment stakes with latest Globalstar deal
Apple's $1.5 billion investment in Globalstar marks a significant milestone in the realm of satellite connectivity for consumer devices… The post appeared first on MacDailyNews.05:49 pmApple's new M4 MacBook Pro drops to record low $1,399 at Amazon
An early Black Friday price war offers shoppers the lowest price on record for the Late 2024 M4 MacBook Pro 14-inch at Amazon and B&H.Grab the lowest price on record for the 2024 M4 MacBook Pro - Image credit: AppleThe $1,399 price at Amazon and B&H Photo is thanks to a cash discount on top of an on-page coupon at Amazon.com. And with the entry model now including 16GB of unified memory compared to last year's 8GB, the 2024 14-inch MacBook Pro offers additional value for the price.At press time, units are in stock in both Space Black and Silver, with delivery as early as tomorrow to select locations with Amazon Prime. You can also find deals on upgraded configure-to-order (CTO) models in our M4 14-inch MacBook Pro Price Comparison Guide. Continue Reading on AppleInsider | Discuss on our Forums05:29 pmSharing Location Tracking Outrage and Solutions on CCATP
On the Chit Chat Across the Pond podcast, Adam Engst and Allison Sheridan explore how a company called Babel Street can track the location of millions of people and how you can keep yourself from ending up in their data set.Read original article05:23 pmMMS Delivery Delays to AT&T Network in the US for a Subset of Short Code and Toll Free Numbers | TwilioMMS Delivery Delays to AT&T Network in the US for a Subset of Short Code and Toll Free Numbers
Nov 18, 09:19 PSTInvestigating - We are experiencing MMS delivery failures when sending to the AT&T network. Our engineers are working with our carrier partner to resolve the issue. We expect to provide another update in 1 hour or as soon as more information becomes available.05:16 pmDoorDash Now Integrates With Reminders App on iPhone for Groceries
DoorDash today announced that its iPhone app now lets users import their grocery lists from the Reminders app, making it quicker to add items to a cart. Since the release of iOS 17 last year, Apple's built-in Reminders app on the iPhone can automatically sort groceries into categories, such as produce and baked goods. And now those lists can be synced with the DoorDash app for grocery delivery. Once a grocery list has been imported to DoorDash, the app surfaces various items from the list that are available for delivery, for faster and easier shopping. An update to the DoorDash app is available on the App Store today.Tags: DoorDash, RemindersThis article, "" first appeared on MacRumors.comDiscuss this article in our forums05:07 pmToday in Apple history: Apple introduces its biggest iMac G4 yet
On November 18, 2003, Apple debuted its 20-inch iMac G4. The sunflower-inspired design looked familiar, but the screen was noticeably larger. (via Cult of Mac - Apple news, rumors, reviews and how-tos)05:03 pmApple accessories are seeing big discounts for Black Friday
Macworld Apple doesn’t just make Macs, iPhones, iPads, AirPods and so on. The company also makes excellent accessories, including the Apple Pencil (a stylus for the iPad), Magic Keyboard, Magic Mouse, Magic Trackpad, and much more. These are all great products, but what if you don’t want to pay full price? Luckily there are various resellers – including Amazon – that discount them at various points throughout the year. So if you want to grab a Pencil to go with your iPad, get an Apple Magic Keyboard for your Mac for less than full price, or give someone who is always losing things a cut-price AirTag this Black Friday, look no further. If you want a deal on an Apple Pencil, Magic Keyboard, Magic Mouse, Magic Trackpad, or one of the Smart Keyboards for the iPad, you have come to the right place. If you want to buy a new Apple keyboard, mouse, trackpad or any other peripheral, there are plenty of deals to be had all year round but, with Black Friday fast approaching, now is the time to grab the best bargains. We’ll be updating this article with details of all the best Black Friday accessory deals, but we are already seeing price cuts on various Apple accessories, so there’s no need to wait to grab a bargain. Want to see how much you can save on other Apple products? Take a look at our Best Black Friday Apple Deals. Apple accessory Prime Day deals: Biggest savings U.S. Amazon, Magic Keyboard with Touch ID: $128 ($20 off, MSRP $149) Amazon, Magic TrackPad: $109 ($10 off, MSRP $129) Amazon, Magic Mouse: $67.98 ($11 off, MSRP $79) B&H, Apple Pencil Pro: $115.95 ($13 off, MSRP $129) B&H, Apple Pencil (USB-C): $59.95 ($20 off, MSRP $79) Amazon, Apple Pencil (2nd gen): $118 ($11 off, MSRP $129) Amazon, Apple Magic Keyboard for 11-inch iPad Pro M4: $249.99 ($50 off, MSRP $299) Amazon, Apple Magic Keyboard Folio for 10th gen iPad: $199 ($50 off, MSRP $249) Amazon, Apple Magic Keyboard for 11-inch iPad Air M2: $224.99 ($50 off, MSRP $299) Best Buy, AirTags 4-pack: $72.99 ($26 off, MSRP $99) B&H, AirTag: $25.99 ($3 off, MSRP $29) Amazon, Apple MagSafe Charger (2m): $39.99 ($10 off, MSRP $49) U.K. KRCS, Magic Keyboard with Touch ID: £119 (£30 off, MSRP £149) KRCS, Magic Keyboard with Touch ID & numeric keys: £145 (£34 off, MSRP £179) Amazon, Magic Keyboard with Numeric Keypad (no Touch ID): £114.97 (£14 off, RRP £129) John Lewis, Magic Keyboard (no Touch ID): £84.15 (£14.85 off, RRP £99) Amazon, Magic Trackpad (Black): £129 (£20 off, RRP £149) KRCS, Magic Keyboard for iPad Pro 11-inch M4: £259 (£40 off, RRP £299) PRIME BIG DEAL Amazon, Magic Keyboard Folio for iPad (10th generation): £228.56 (£20.44 off, RRP £249) Amazon, AirTag (4 pack): £94.99 (£24 off, RRP £119) Amazon, Single AirTag: £28 (£7 off, RRP £35) Amazon, Apple TV 4K, 128GB: £158 (£11 off, RRP 169) Apple Magic Keyboard for Mac deals Want to get an Apple Magic Keyboard? The best deals on the various models are below. For other keyboard deals take a look at our Best Mac Keyboard roundup. Apple Magic Keyboard (with Touch ID) 2021 deals You no longer have to buy an M1 iMac if you want a Touch ID on the keyboard of your Apple desktop computer. You can buy an Apple Keyboard with Touch ID incorporated. You will need to have a M1 or later Mac to use the Touch ID feature though. The Magic Keyboard with Touch ID costs $149 (buy from Apple US) and £149 (Buy from Apple UK) New Refurbished Retailer Price $128.39 View Deal $129 View Deal $129.99 View Deal $148 View Deal $149 View Deal $179.99 View Deal $189 View Deal Price comparison from over 24,000 stores worldwide View more prices Product Price Magic Keyboard (2021) Wireless – Silver – QWERTY – English (US) $75.27 View Deal Price comparison from Backmarket Apple Magic Keyboard (with Touch ID and numeric keypad) 2021 deals The price for the Touch ID keyboard with numeric keypad is $179 ( buy from Apple US) and £179 ( buy from Apple UK). Retailer Price $169.99 View Deal $179 View Deal $179.99 View Deal $189 View Deal Price comparison from over 24,000 stores worldwide Product Price Price comparison from Backmarket Apple Magic Keyboard (without Touch ID, with numeric keypad) deals You can still buy the older Apple Magic Keyboard without Touch ID. The model with the numeric keypad costs $129 from Apple and £129 from Apple. Good deals from other resellers will appear below. New Refurbished Retailer Price $109.99 View Deal $129 View Deal $129 View Deal $129 View Deal $129.99 View Deal Price comparison from over 24,000 stores worldwide View more prices Product Price Magic Keyboard () Num Pad Wireless – White – QWERTY – English (US) $60.96 View Deal Price comparison from Backmarket Apple Magic Keyboard (without numeric keypad) deals The non-Touch ID, non-numeric keypad version of the Magic Keyboard is still available. It costs $99 from Apple US and £99 from Apple UK. New Refurbished Retailer Price $99 View Deal $99 View Deal $99 View Deal $99.99 View Deal $99.99 View Deal $99.99 View Deal $114.99 View Deal Price comparison from over 24,000 stores worldwide View more prices Product Price Magic Keyboard (2021) Wireless – Silver – QWERTY – English (US) $59.99 View Deal Price comparison from Backmarket Apple Magic TrackPad deals Replace your mouse with a Magic TrackPad from Apple and take advantage of the extra gestures available. Find the best deals below. Apple Magic TrackPad (2021) deals In August 2021, Apple launched a new Magic TrackPad (which now has a white touch-sensitive surface rather than aluminum). Apple now includes a USB-C to Lightning cable with both products (previously it was a USB-A plug). If you have a Mac laptop you will be familiar with the trackpad that interprets various gestures and swipes to move around the desktop, zoom in and out of images, and turn pages. You can buy a separate Magic Trackpad to use with a desktop Mac (or a MacBook if you prefer). The Magic TrackPad costs $129 (buy from Apple US) and £129 (buy from Apple UK). Retailer Price $109.99 View Deal $109.99 View Deal $119.99 View Deal $129 View Deal $129 View Deal $129.99 View Deal Price comparison from over 24,000 stores worldwide View more prices Product Price Price comparison from Backmarket Apple Magic TrackPad (2021, black) deals There’s also a black version of the Magic Trackpad available. It usually costs $149 or £149. New Refurbished Retailer Price $139 View Deal $139 View Deal $139 View Deal $139.99 View Deal $164.01 View Deal Price comparison from over 24,000 stores worldwide View more prices Product Price Magic trackpad Wireless – Black $129 View Deal Price comparison from Backmarket Apple Magic Mouse deals The Magic Mouse is now in its third generation. It is a multi-touch mouse that also responds to gestures, such as swipes on the top of its body. It is also possible to set up a Magic Mouse to respond to a ‘right-click’ (although this isn’t the default). Like the Magic Trackpad, the 2021 Magic Mouse now features a USB-C to Lightning cable (previously it had a USB-A plug). For more mouse deals take a look at our round-up of the best Mice for Mac. Apple Magic Mouse 2021 deals The 2021 Magic Mouse in white costs $79 (buy from Apple US) and £79 (buy from Apple UK). You can also get a black version of the Magic Mouse for $99 (buy from Apple US) and £99 (buy from Apple UK). New Refurbished Retailer Price $67.98 View Deal $69.99 View Deal $79 View Deal $79 View Deal $79.99 View Deal Price comparison from over 24,000 stores worldwide View more prices Product Price Magic mouse Wireless – Silver $44.01 View Deal Price comparison from Backmarket Apple Pencil deals Want a stylus to use with your iPad. Don’t pay full price. Find the best deals on Apple Pencils below. Plus take a look at our round-up of the best iPad styluses. Apple Pencil Pro, 2024 Introduced in May 2024 the Apple Pencil Pro works with the M4 iPad Pro and M2 iPad Air. It offers lots of features for the ultimate in creative control. It costs $129/£129. Retailer Price $118.5 View Deal $129 View Deal $129 View Deal $129 View Deal $129 View Deal $129 View Deal $129 View Deal $144 View Deal Price comparison from over 24,000 stores worldwide View more prices Product Price Price comparison from Backmarket Apple Pencil (USB-C/3rd generation, 2023 model) Apple’s unofficially calling this the 3rd generation in some places, in others it refers to it as Apple Pencil USB-C. It’s the new model that launched in 2023. It costs $79/£79. New Refurbished Retailer Price $64.5 View Deal $69 View Deal $69 View Deal $69.99 View Deal $79 View Deal $79 View Deal $79 View Deal $79.99 View Deal Price comparison from over 24,000 stores worldwide View more prices Product Price Apple Pencil (USB-C) – 2018 $49.99 View Deal Price comparison from Backmarket Apple Pencil (2nd generation) The second-generation Apple Pencil was announced in October 2018. It works with most new iPads, (aside from the 10.9- and 10.2-inch models). It costs $129/£129 from Apple. New Refurbished Retailer Price $89 View Deal $114 View Deal $118 View Deal $129 View Deal $129 View Deal $129 View Deal $129 View Deal $129.99 View Deal Price comparison from over 24,000 stores worldwide View more prices Product Price Apple Pencil (2nd gen) – 2018 $74 View Deal $109.99 View Deal Price comparison from Backmarket Apple Pencil (1st generation) The first-generation Apple Pencil was announced back in September 2015, but it’s still on sale now as it still works with the 9th- and 10th-gen iPad models. It normally costs $99/£99 from Apple. New Refurbished Retailer Price $99 View Deal $99 View Deal $99 View Deal Price comparison from over 24,000 stores worldwide Product Price Apple Pencil (1st gen) – 2015 $80 View Deal Price comparison from Backmarket Best iPad keyboard Deals Turn your iPad into a laptop and get a good deal on one of Apple’s iPad keyboard case. Alternatively, take a look at our best iPad keyboard round-up. Apple Magic Keyboard for iPad Pro Apple introduced a new iPad Keyboard with the iPad Pro M4. It costs $299/£299. Retailer Price $249.99 View Deal $257.86 View Deal $266.5 View Deal $299 View Deal $299 View Deal $299 View Deal $299 View Deal $299 View Deal Apple (13-inch iPad Pro, M4 model) $349 View Deal Price comparison from over 24,000 stores worldwide View more prices Product Price Price comparison from Backmarket Apple Magic Keyboard Foilo The Magic Keyboard Folio from Apple works with the 10th generation iPad and costs $249/£249. New Refurbished Retailer Price $199 View Deal $199 View Deal $219.99 View Deal $239 View Deal $249 View Deal $249 View Deal $249 View Deal $249.99 View Deal Price comparison from over 24,000 stores worldwide View more prices Product Price iPad Magic Keyboard Folio (iPad not included) (2022) – White – QWERTY – English (US) $137.98 View Deal Price comparison from Backmarket Apple Magic Keyboard (for iPad) This Magic Keyboard works with the 13-inch iPad Air M2, 11-inch iPad Air M2, 12.9-inch iPad Pro (gen 3-6), 11-inch iPad Pro (gen 1-4), iPad Air (gen 4-5). It usually costs $299/£299. New Refurbished Retailer Price $224.99 View Deal $239.99 View Deal $244 View Deal $246.5 View Deal $299 View Deal $299 View Deal $299 View Deal $299 View Deal $299.99 View Deal Apple (13-inch iPad Air, M2 model) $349 View Deal Price comparison from over 24,000 stores worldwide View more prices Product Price iPad Magic Keyboard (iPad not included) 12.9" (2020) – Black – QWERTY – English (US) $107.22 View Deal iPad Magic Keyboard (iPad not included) 10.9"/11" (2020) – White – QWERTY – English (US) $114.62 View Deal iPad Magic Keyboard (iPad not included) 12.9" (2021) – White – QWERTY – English (US) $119 View Deal iPad Magic Keyboard (iPad not included) 10.9"/11" (2021) – Charocal gray – QWERTY – English (US) $124.23 View Deal iPad Magic Keyboard (iPad not included) (2021) – Black – QWERTY – English (US) $125 View Deal iPad Magic Keyboard (iPad not included) 12.9" (2021) – Black – QWERTY – English (US) $142 View Deal iPad Magic Keyboard (iPad not included) 12.9" (2021) – Black – QWERTY – English (US) $225 View Deal Price comparison from Backmarket View more prices Best Apple AirTags Deals Don’t lose anything ever again! Pop an AirTag in your car, bag or on your cat’s collar. Here are the best prices right now. For ideas see AirTag Uses: What to use AirTags for. Pack for 4 Apple AirTags Check the table below for the best deals right now. Normally $99/£119. Retailer Price $79.99 View Deal $88.99 View Deal $89 View Deal $93.99 View Deal $114.99 View Deal Price comparison from over 24,000 stores worldwide View more prices Product Price Price comparison from Backmarket Apple AirTag Normally $29/£35. Retailer Price $25.99 View Deal $27 View Deal $29 View Deal $41.99 View Deal Price comparison from over 24,000 stores worldwide Product Price Price comparison from Backmarket Black Friday 2024: Best deals for Apple products Check out these roundups for the best Apple deals: Apple Black Friday 2024 sale Best Black Friday 2024 Apple deals Best Black Friday 2024 Mac Deals Best Black Friday 2024 MacBook deals Best Black Friday 2024 AirPods deals Best Black Friday 2024 Apple Watch deals Best Black Friday 2024 iPad deals Best Black Friday 2024 iPhone deals Best Black Friday 2024 Mac monitor deals Best Black Friday 2024 SSD and external hard drive deals Best Black Friday 2024 Apple accessory deals04:55 pmApple’s MagSafe Battery Pack for iPhone shouldn’t have been a one-and-done experiment
Following the introduction of MagSafe charging on the iPhone 12, Apple unveiled a MagSafe Battery Pack accessory. With deep iOS integration and unique reverse wireless charging support, it was a compelling accessory for iPhone users and earned a spot in my everyday carry. Unfortunately, it went on to be yet another one-and-done Apple accessory that was discontinued with the iPhone 15. more…04:53 pmThe M4 Macs have one flaw that may make you reconsider buying one
Macworld I recently wrote about the M4 Mac’s compelling lineup and it’s a great time to buy a Mac. However, one type of user will want to hold off on a purchase. According to Howard Oakley of The Eclectic Light Company, the new M4 Macs will not allow virtual machine software to run properly. Users who want to run macOS versions older than Ventura 13.4 through virtualization will find that the virtual machine will not boot and users end up with a blank screen. Since the virtual machine (VM) won’t boot at all, there’s no way to access the log to see what could be the problem. Oakley reports that Activity Monitor shows that with the VM, only one CPU core is active even though multiple cores are allocated. This could mean that the issue happens “before the VM kernel boots the other cores, an event that occurs early during the kernel boot phase. Until that point, pre-boot phases and the kernel run on just a single CPU core.” This limitation means that VMs on M4 Macs can only run macOS Ventura 13.4 and later. The issue doesn’t affect M1, M2, and M3 Macs, which can run VMs with macOS Monterey 12 or later. M-series Macs cannot run VMs of macOS Big Sur 11 or earlier. Oakley has tried running the VM on a single CPU core, but it still did not work on the M4. The issue has been reported to Apple but it’s unclear if a fix can or will be made available. Oakley suggests that Apple could fix the issue by modifying the kernels of the older versions of macOS, but that seems like a task Apple isn’t going to do. So for now, if running older versions of macOS is vital to your workflow, you might want to hold off on a new M4 purchase—or at least keep an older Mac around.04:48 pmI built (and launched) Tebi – a photo editor to place text behind a foreground subject | Reddit on iOS ProgrammingI built (and launched) Tebi – a photo editor to place text behind a foreground subject
Hello guys! Some weeks ago I posted in this sub to get feedback on the beta version of Tebi (here's the link to prev post). As mentioned in previous post: A couple of weeks ago I saw a guy on twitter who built a web app to place text behind an image. I’d been wanting […]04:48 pmBenchmarks spotlight Apple’s M4 Max’s stunning graphics power
Early CPU benchmarks via Geekbench for Apple’s highest-end M4 Max chipset were very impressive. Now, take a look at some GPU benchmarks… The post appeared first on MacDailyNews.04:46 pmApple readies smart home display and camera for 2025 and beyond on HomeKit Insider
On this episode of the HomeKit Insider Podcast Apple's 2025 smart home plans become more clear and more new products launch.HomeKit Insider PodcastWe saw two pieces of smart lock news this week. Nuki released the Nuki Lock Ultra in the EU — before a 2025 US release — that was massively updated.The Nuki Lock Ultra is three times smaller and three times as fast as its predecessor. There's no Home Key support but they do plan to support Aliro, which is essentially the same. Continue Reading on AppleInsider | Discuss on our Forums04:40 pmDeals: Entry M4 MacBook Pro all-time low at $199 off, M4 Pro Mac mini $129 off, M2 iPad Air $100 off, more | 9 to 5 MacDeals: Entry M4 MacBook Pro all-time low at $199 off, M4 Pro Mac mini $129 off, M2 iPad Air $100 off, more
While we are still a few days away from the start of the official Amazon Black Friday Week sale, Walmart has now detailed its upcoming official event, and Best Buy is teasing an Apple Watch Ultra 2 doorbuster for later this week, but the Apple deals are already flying anyway. Today’s roundup is headlined by a frankly fantastic $199 price drop on Apple’s most affordable new 16GB M4 MacBook Pro to deliver new all-time low pricing. The deals then carry over to the best prices to date on the new M4 Mac mini – the M4 Pro model is now $129 off with other configurations starting from $549. The early Black Friday offer on the entry-level M2 iPad Air is now live $500, the lowest prices of all-time are live in Arc’s iPhone 16 Bumper Case Black Friday sale, and there’s plenty more where those came from down below. more…04:30 pmPowered studio monitor speakers focus M4 MacBook rig’s sound [Setups]
Edifier speakers ideally suited to clear, moderate-volume sound at close quarters find their way into David Snow's M4 Pro MacBook setup. (via Cult of Mac - Apple news, rumors, reviews and how-tos)04:22 pmRussia SMS Carrier Maintenance – MTS
THIS IS A SCHEDULED EVENT Nov 19, 08:00 - 08:45 PSTNov 18, 08:22 PSTScheduled - The MTS network in Russia is conducting an emergency maintenance from 19 November 2024 at 08:00 PST until 19 November 2024 at 08:45 PST. During the maintenance window, there could be intermittent delays delivering SMS to MTS Russia handsets.We are aware of the short notice and are working with our Carrier Partners to provide earlier notification where possible.04:10 pmiPhone thieves use stolen tracking data to target deliveries
Bad news for the holiday season: Increasingly, thieves target iPhone deliveries using stolen tracking data. But you can fight back. (via Cult of Mac - Apple news, rumors, reviews and how-tos)03:57 pmApple TV+ will license its movies to other services to reduce losses, per report
Apple TV+ has had its share of hits, but the service nonetheless continues to struggle to gain widespread success. Now, according to a new report, Apple will start licensing some of its content elsewhere in an effort to save money and spread its reach. more…03:57 pmGet your iPhone XS Max or iPhone 6s Plus repaired while you still can
The iPhone XS Max and the iPhone 6s Plus are now classed as "vintage" hardware by Apple, while the Apple Watch Series 2 has been deemed "obsolete."iPhone XS MaxApple has a policy of listing products as being vintage or obsolete after they have been on the market for a long time. In a November 15 update to the support page, some iPhone and Apple Watch variants have seen a change in status.The iPhone XS Max and iPhone 6s Plus are now added to the vintage list. They are listed alongside other models, including the iPhone X, iPhone 8 and 8 Plus Red, and the original iPhone SE. Continue Reading on AppleInsider | Discuss on our Forums03:52 pmInstall Mac Apps on External Storage in macOS Sequoia
If you're running out of space on your Mac's internal drive, macOS Sequoia 15.1 includes a handy new feature that lets you install large apps directly to external storage. Here's how to use it to preserve space on your boot drive. Apple is known for charging customers a very high markup for additional storage when buying a new Mac. Given that internal storage usually can't be upgraded after purchase, it's no wonder that external drives are a popular solution for many Mac users who want the extra space but don't want to pay a premium for the privilege. Until recently, macOS automatically installed new apps downloaded from the Mac App Store to a Mac's boot drive, which was not particularly helpful to users with dwindling internal storage. In macOS Sequoia 15.1, however, Apple has added a new option that lets you download and install apps that require more than 1GB of storage to an external drive. Anyone working with large apps like Final Cut Pro or Logic Pro, or gamers with space-consuming titles, will surely welcome this ability to download and install large apps to a separate disk. Installing Mac Apps to External Storage Connect your external drive to your Mac. Open the App Store. Click App Store in the menu bar and select Settings.... Check the box next to "Download and install large apps to a separate disk." Select your external drive from the dropdown menu. Some considerations to keep in mind: The feature only works with apps larger than 1GB, and your external drive must be connected when enabling the setting. (Make sure the drive you connect is APFS formatted.) Additionally, while apps will install to your external drive, bear in mind that, depending on the app, some app data may still be stored on your main drive. It's also worth noting that you can't choose installation locations using this method on a per-app basis – it's an all-or-nothing setting for qualifying apps. Lastly, for the best experience, use a fast external SSD (or an internal SSD in an external enclosure) to ensure optimal app performance.This article, "" first appeared on MacRumors.comDiscuss this article in our forums03:50 pmDon’t miss our M4 Mac mini and iMac video reviews
Anyone considering the Mac mini or iMac with the speedy M4 processor needs to watch our video reviews of these new desktops. (via Cult of Mac - Apple news, rumors, reviews and how-tos)03:40 pmApple again mulls idea of releasing TV set
According to Bloomberg News’ Mark Gurman, Apple is again "evaluating" the idea of releasing an Apple-branded TV set… The post appeared first on MacDailyNews.03:39 pmAdd storage to your Mac this Black Friday with these Mac SSD & HDD deals
Macworld Whether you have an old Mac or a new one, adding extra storage in the form of an external SSD or hard drive is a great way to speed up your Mac by freeing up space in the internal drive. It’s also a good idea to regularly back up your Mac and to do so you need a decent hard drive or SSD to back up to. With Black Friday approaching, now is a great time to look for a great deal on storage for your Mac. Black Friday is November 29 this year, but you don’t have to wait until then for the deals. We are already seeing money some of the SSDs and Hard drives we have reviewed and recommend as the best SSDs, best hard drives and best NAS & PCS drives for your Mac. We find that the majority of storage deals are to be found on Amazon, but if you have a specific model in mind, it’s worth checking other retailers as well, including Best Buy, Newegg, and Walmart in the U.S., as well as Currys, Argos, and John Lewis in the U.K. Below you can see our top picks of the best storage deals for Black Friday 2024. We’ll be updating this page imminently, as the discounts start to come in and as Apple announces it own Black Friday 2024 sale. Want to save money on Apple products? Check out of our round-up of the best Apple deals for Black Friday. Black Friday 2023: Best SSD and hard drive deals in the U.S. Amazon, Kingston XS1000 2TB SSD, $120 ($20 off, MSRP $140) REVIEW Amazon, SanDisk Professional 1TB PRO-G40 SSD, $170 ($130 off, MSRP $300) REVIEW Amazon, SanDisk Professional PRO-BLADE Transport & 1TB SSD, $159.99 ($81 off, MSRP $240) REVIEW Amazon, SanDisk 1TB Portable SSD, $82 ($17 off, MSRP $100) REVIEW Amazon, SanDisk Portable SSD, 2TB: $110 ($40 off, MSRP $150) REVIEW B&H, SanDisk Desk Drive: $260 ($160 off, MSRP $419.99) REVIEW B&H, Seagate 500GB One Touch: $65 ($30 off, MSRP $94.99) REVIEW Amazon, LaCie Rugged SSD Pro, 4TB, $299.99 ($20 off, MSRP $319) REVIEW Amazon, LaCie Rugged Mini external Hard Drive, 1TB, $79 ($6 off, MSRP $85) REVIEW Amazon, Western Digital 2TB My Passport SSD, $150 ($50 off, MSRP $200) REVIEW Amazon, Western Digital Black P40 SSD, 1TB: $100 ($40 off, MSRP $140) Amazon, Samsung T7 Shield, 2TB SSD, $169 ($116 off, MSRP $285) REVIEW Amazon, Samsung T7 Shield, 4TB SSD, $291 ($208 off, MSRP $499.99) REVIEW Amazon, Samsung T9 Portable SSD, 2TB: $170 ($130 off, MSRP $300) For the best memory and storage deals on Amazon right now go to Amazon’s Memory & Storage section where you will find deals on external hard drives, SSDs, and Network Attached Storage. Black Friday 2023: Best SSD and hard drive deals in the U.K. Amazon, Kingston XS1000 2TB SSD, £60.99 (£15 off, MSRP £75.99) REVIEW Amazon, SanDisk Professional 1TB PRO-G40 SSD, £243 (£16 off, RRP £259.99) REVIEW SanDisk, SanDisk Portable 2TB SSD, £105.99 (£31 off, RRP £136.99) REVIEW Amazon, LaCie Portable SSD, 1TB, External SSD, £117.36 (£60 off, RRP £177.60) REVIEW Amazon, LaCie Rugged SSD Pro, 4TB, £507.59 (£429 off, RRP £999) REVIEW Amazon, LaCie Rugged Mini SSD, 2TB, £224 (£215 off, RRP £439.99) REVIEW Amazon, LaCie Rugged Mini USB-C, 2TB, Hard Drive: £76.99 (£14 off, RRP £91.87) Amazon, LaCie Portable SSD, 500GB: £74 (£35 off, RRP £109.36) Amazon, Samsung T7 Shield, 4TB SSD, £239.99 (£55 off, RRP £294.99) REVIEW Amazon, Seagate Ultra Touch HDD, 4TB, External HDD, £110.99 (£44 off, RRP £154.99) Amazon, WD 4TB My Passport SSD, £289 (£5 off, RRP £294.99) REVIEW Amazon, WD 5TB My Passport for Mac Portable Hard Drive: £111.99 (£33 off, RRP £144.99) Amazon, WD 18TB Elements Desktop External Hard Drive: £347 (£106 off, £453.99) For the best memory and storage deals on Amazon right now go to Amazon’s Memory & Storage section where you will find deals on external storage, SSDs, and Network Attached Storage. Which resellers have Black Friday deals? Look out for the best deals over the Black Friday week, but many resellers are already offering Black Friday discounts. U.S. Adorama is advertising Holiday Deals. Amazon has Holiday Deals. Best Buy’s Black Friday sale has started. B&H Photo has a Holiday Head Start sale. Walmart’s Black Friday deals have already started. U.K. KRCS has already reduced Mac prices by 10%. AO.com has various Black Friday savings. Laptops Direct’s Black Friday sale has started. eBuyer has a Black Friday Early Access Sale with up to 45% off. Very‘s Black Friday sales is underway. John Lewis is running Black Friday deals. Currys has up to 40% off for Black Friday. Argos has a price promise that the prices won’t go any lower for Black Friday. Amazon’s Black Friday week starts on 17 November. Amazon Lightning Deals Check out these time-limited tech deals before they go. (Prices subject to change.) Targus USB C Universal Docking Station w…$303.23 ( 37% off, was $482.99 ) Kensington Single Monitor Desk Mount$38.06 ( 33% off, was $56.99 ) Monster Boomerang Neckband Bluetooth Spe…$59.99 ( 33% off, was $89.99 ) Norton 360 Platinum 2024$39.99 ( 69% off, was $129.99 ) Beats Studio Buds – True Wireless Noise …$99.99 ( 33% off, was $149.95 ) Beats Studio Buds – True Wireless Noise …$99.95 ( 33% off, was $149.95 ) Beats Studio Buds – True Wireless Noise …$99.99 ( 33% off, was $149.95 ) Logitech G PRO X SUPERLIGHT Wireless Gam…$91.00 ( 43% off, was $159.99 ) BOSCH GPB18V-5CN 18V Jobsite Radio with …$150.54 ( 34% off, was $229.00 ) Introducing Ring Pan-Tilt Indoor Cam | S…$49.99 ( 37% off, was $79.99 ) SAMSUNG 43-Inch Class QLED 4K QN90D Seri…$897.99 ( 40% off, was $1497.99 ) SAMSUNG 75-Inch Class QLED 4K QN90D Seri…$1797.99 ( 45% off, was $3297.99 ) Hisense 50-Inch Class U6HF Series ULED 4…$299.99 ( 40% off, was $499.99 ) Hisense 100-Inch Class U7 Series ULED 4K…$1798.00 ( 40% off, was $2997.95 ) Hisense 100-Inch Class U8 Series Mini-LE…$2997.99 ( 40% off, was $4997.99 ) SAMSUNG 85-Inch Class QLED 4K QN90D Seri…$2297.99 ( 52% off, was $4797.99 ) SAMSUNG 50-Inch Class QLED 4K QN90D Seri…$997.99 ( 37% off, was $1597.99 ) SAMSUNG 65-Inch Class OLED 4K S85D Serie…$1297.99 ( 38% off, was $2097.99 ) SAMSUNG 98-Inch Class QLED 4K Q80C Serie…$3997.99 ( 50% off, was $7997.99 ) Blink Outdoor 4 (4th Gen) + Battery Exte…$49.99 ( 58% off, was $119.99 ) All New, Made for Amazon$14.99 ( 46% off, was $27.99 ) Made for Amazon$14.99 ( 40% off, was $24.99 ) Black Friday 2024: Best deals for Apple products Check out these roundups for the best Apple deals: Best Black Friday 2024 Apple accessory deals Apple Black Friday 2024 sale Best Black Friday 2024 Apple deals Best Black Friday 2024 Mac Deals Best Black Friday 2024 MacBook deals Best Black Friday 2024 AirPods deals Best Black Friday 2024 Apple Watch deals Best Black Friday 2024 iPad deals Best Black Friday 2024 iPhone deals Best Black Friday 2024 Mac monitor deals Best Black Friday 2024 SSD and external hard drive deals03:35 pmBeta testers needed for a new limitless voting app – Votsy.
Vote with no limits! Create endless votes and express your opinions with a wide range of icons! https://testflight.apple.com/join/FSnabGYR Please test every aspect of the app; it is not complicated, but it still needs testing! Thank you! submitted by /u/Forsaken_Air_472 [link] [comments]03:25 pmApple Appears Set To Discontinue Lightning-to-Headphone Adapter
Apple has stopped selling its Lightning-to-3.5mm headphone jack adapter in the U.S. and most countries, with limited stock remaining only in select European markets. The $9 accessory, introduced with iPhone 7 in 2016 (after the "courageous" move to stop including the headphone jack in iPhones), allowed users to connect traditional headphones to Lightning port iPhones. The discontinuation comes as Apple transitions to USB-C ports across its iPhone lineup. Read more of this story at Slashdot.03:23 pmM4 iMac Black Friday Deals Arrive With $149 Off on Amazon
Black Friday is next week, and today Amazon has numerous all-time low prices across the 2024 24-inch M4 iMac lineup ahead of the shopping holiday. You'll find as much as $149 off select computers during this sale, and all of them require you to clip an on-page coupon to see the discounts. Note: MacRumors is an affiliate partner with Amazon. When you click a link and make a purchase, we may receive a small payment, which helps us keep the site running. The cheapest M4 iMac available is the 8-core/16GB RAM/256GB 24-inch iMac at $1,149.99, down from $1,299.00. Similar to the other models available on sale, you'll find multiple colors at this record low price, with varying delivery estimates between each option. Note: You won't see the deal price until checkout. $149 OFF24-inch M4 iMac (8-core/16GB RAM/256GB) for $1,149.998-core/16GB RAM/256GB - $1,149.99 with on-page coupon, down from $1,299.00 10-core/16GB RAM/256GB - $1,349.99 with on-page coupon, down from $1,499.00 10-core/16GB RAM/512GB - $1,549.99 with on-page coupon, down from $1,699.00 10-core/24GB RAM/512GB - $1,749.99 with on-page coupon, down from $1,899.00 You can find all the Apple Black Friday Deals currently available in our dedicated post. For everything else, we're keeping track of all of the season's best Apple-related deals in our Black Friday roundup, so be sure to check back throughout the month for an updated list of all the most notable discounts you'll find for Black Friday 2024. Deals Newsletter Interested in hearing more about top deals as we head into the holidays? Sign up for our Deals Newsletter and we'll keep you updated so you don't miss the biggest deals of the season! Related Roundup: Apple DealsThis article, "" first appeared on MacRumors.comDiscuss this article in our forums03:22 pmApple’s advocacy for regular standing backed by new study
Apple has been one of the most vocal supporters of the benefits of regularly standing up during the working day. The company encourages standing once an hour via Apple Watch alerts, and it also made sit-stand desks a standard fitment in its Apple Park campus. CEO Tim Cook even cited the “sitting is the new cancer” phrase which has proven so controversial … more…03:21 pmApple confirms fix for disappearing Notes after iCloud terms issue
Earlier this month we reported on a scary bug impacting Apple Notes users and offered a simple fix. Now, Apple has officially acknowledged the issue and outlined the solution for users in its own support document. more…03:11 pmB&H slashes M3 MacBook Air with 16GB RAM, 512GB SSD to $1,099
In an epic holiday price cut, B&H has trimmed hundreds of dollars off Apple's upgraded 13-inch and 15-inch MacBook Air with the M3 chip.Grab early Black Friday savings on Apple's M3 MacBook Air.The holiday MacBook Air sale at B&H offers prices as low as $1,099 for M3 models with at least 16GB of unified memory and 512GB of storage.Buy for $1,099 Continue Reading on AppleInsider | Discuss on our ForumsFirehose II – Jobs, Deals, Apps
- Saturday November 23
- 01:24 pmOperations Associate – *Apple* Blossom Mall – JCPenney (United States)
Operations Associate - Apple Blossom Mall Location:Winchester, VA, United States (https://jobs.jcp.com/jobs/location/191170/winchester-va-united-states) - Apple01:24 pmOmnichannel Associate – *Apple* Blossom Mall – JCPenney (United States)
Omnichannel Associate - Apple Blossom Mall Location:Winchester, VA, United States (https://jobs.jcp.com/jobs/location/191170/winchester-va-united-states) - Apple01:24 pm*Apple* / Mac Administrator – JAMF Pro – Amentum (United States)
Amentum is seeking an ** Apple / Mac Administrator - JAMF Pro** to provide support with the Apple Ecosystem to include hardware and software to join our team and01:24 pm*Apple* Engineering Architect – NANA Regional Corporation (United States)
Cloud Lake Technology is looking for an Apple Engineering Architect/Team Lead to support a Department of Homeland Security (DHS) prime contract that provides12:57 pmAnesthesia Technician – *Apple* Hill Surgery Center – Full Time – Days – WellSpan Health (United States) | Job Search EngineAnesthesia Technician – *Apple* Hill Surgery Center – Full Time – Days – WellSpan Health (United States)
Anesthesia Technician - Apple Hill Surgery Center - Full Time - Days Location: WellSpan Medical Group, York, PA Schedule: Full Time Full Time (80 hours/Biweekly)12:57 pmAnesthesia Technician – *Apple* Hill Surgery Center – Full Time – Days – WellSpan Health (United States) | Job Search EngineAnesthesia Technician – *Apple* Hill Surgery Center – Full Time – Days – WellSpan Health (United States)
Anesthesia Technician - Apple Hill Surgery Center - Full Time - Days Location: WellSpan Medical Group, York, PA Schedule: Full Time Full Time (80 hours/Biweekly)12:57 pmEnvironmental Services Technician – *Apple* Hill – Evening/Night – WellSpan Health (United States) | Job Search EngineEnvironmental Services Technician – *Apple* Hill – Evening/Night – WellSpan Health (United States)
Environmental Services Technician - Apple Hill - Evening/Night Location: WellSpan Health, York, PA Schedule: Part Time Part Time (40 hours Biweekly) Monday - Friday12:57 pmEnvironmental Services Technician – *Apple* Hill – Evening/Night – WellSpan Health (United States) | Job Search EngineEnvironmental Services Technician – *Apple* Hill – Evening/Night – WellSpan Health (United States)
Environmental Services Technician - Apple Hill - Evening/Night Location: WellSpan Health, York, PA Schedule: Part Time Part Time (40 hours Biweekly) Monday - Friday12:56 pmPharmacy Technician (Retail) – *Apple* Hill Pharmacy – FT – Day/Eve – WellSpan Health (United States) | Job Search EnginePharmacy Technician (Retail) – *Apple* Hill Pharmacy – FT – Day/Eve – WellSpan Health (United States)
Pharmacy Technician (Retail) - Apple Hill Pharmacy - FT - Day/Eve Location: WellSpan Health, York, PA Schedule: Full Time Schedule: Full Time 40-hours per week12:56 pmPharmacy Technician (Retail) – *Apple* Hill Pharmacy – FT – Day/Eve – WellSpan Health (United States) | Job Search EnginePharmacy Technician (Retail) – *Apple* Hill Pharmacy – FT – Day/Eve – WellSpan Health (United States)
Pharmacy Technician (Retail) - Apple Hill Pharmacy - FT - Day/Eve Location: WellSpan Health, York, PA Schedule: Full Time Schedule: Full Time 40-hours per week12:56 pmCommercial Account Manager – Apple Roofing (United States)
…in the greater Kansas City, MO area to service designated territory and clients. Apple Roofing is a leading name in the roofing industry, recognized for providing12:56 pmCommercial Account Manager – Apple Roofing (United States)
…in the greater Kansas City, MO area to service designated territory and clients. Apple Roofing is a leading name in the roofing industry, recognized for providing12:56 pmAccount Manager – Commercial Roofing – Apple Roofing (United States)
…in the greater Kansas City, MO area to service designated territory and clients. Apple Roofing is a leading name in the roofing industry, recognized for providing12:56 pmAccount Manager – Commercial Roofing – Apple Roofing (United States)
…in the greater Kansas City, MO area to service designated territory and clients. Apple Roofing is a leading name in the roofing industry, recognized for providing12:56 pmBi-lingual (Spanish) Level 1 *Apple* Support Specialist – CompuCom (United States) | Job Search EngineBi-lingual (Spanish) Level 1 *Apple* Support Specialist – CompuCom (United States)
…right people. Our client is currently seeking a qualified Bi-lingual (Spanish) Level 1 Apple Support Specialist to join their team. This role can be hybrid / remote12:56 pmBi-lingual (Spanish) Level 1 *Apple* Support Specialist – CompuCom (United States) | Job Search EngineBi-lingual (Spanish) Level 1 *Apple* Support Specialist – CompuCom (United States)
…right people. Our client is currently seeking a qualified Bi-lingual (Spanish) Level 1 Apple Support Specialist to join their team. This role can be hybrid / remote12:56 pmRetail Assistant Department Manager, *Apple* Tech Shop – Barnes & Noble Education (United States) | Job Search EngineRetail Assistant Department Manager, *Apple* Tech Shop – Barnes & Noble Education (United States)
…combination of education, certification and experience will be considered. + A+ and/or Apple certified or able to achieve certification within 60 days required. +12:56 pmRetail Assistant Department Manager, *Apple* Tech Shop – Barnes & Noble Education (United States) | Job Search EngineRetail Assistant Department Manager, *Apple* Tech Shop – Barnes & Noble Education (United States)
…combination of education, certification and experience will be considered. + A+ and/or Apple certified or able to achieve certification within 60 days required. +12:55 pmPharmacist (Retail) – *Apple* Hill – Part Time – Day/Evening – WellSpan Health (United States) | Job Search EnginePharmacist (Retail) – *Apple* Hill – Part Time – Day/Evening – WellSpan Health (United States)
Pharmacist (Retail) - Apple Hill - Part Time - Day/Evening Location: WellSpan Health, York, PA Schedule: Part Time Schedule: Part-time 20-hours per week Day/Evening12:55 pmPharmacist (Retail) – *Apple* Hill – Part Time – Day/Evening – WellSpan Health (United States) | Job Search EnginePharmacist (Retail) – *Apple* Hill – Part Time – Day/Evening – WellSpan Health (United States)
Pharmacist (Retail) - Apple Hill - Part Time - Day/Evening Location: WellSpan Health, York, PA Schedule: Part Time Schedule: Part-time 20-hours per week Day/Evening12:55 pmSales Operations Manager II – *Apple* – DISH Network (United States)
…large. **Job Duties and Responsibilities** The Sales Operations Manager II - Apple will provide critical operational and analytical support to ensure Boost Mobile's12:55 pm