Hello and welcome to the Tuesday, May 13th,

2000-25 edition of the Sands Internet Storm Center's Stormcast.

My name is Johannes Ulrich, and today I'm recording from Jacksonville, Florida.

And well, today we got patches from Apple.

So tomorrow, Microsoft Patch Tuesday, today, Apple Patch, Patch Monday, even though, of course, Apple does publish patches not on a regular schedule.

This particular update fixes 65 different vulnerabilities. There's one sort of notable vulnerability here, and that one is already being exploited.

It's an audio stream vulnerability.

Apple has released a patch for this particular vulnerability back mid-April, but only for the most recent versions of iOS and macOS.

This update now does also update some of the older versions of MacOS and iOS. For MacOS,

it goes back to Ventura, which is 13, so about two years ago. In addition to this particular

vulnerability that's already being exploited, there are a number of other notable vulnerabilities.

For example, a couple of vulnerabilities in WebKit that could lead to code execution if you're visiting a malicious website.

Also kind of an interesting vulnerability in FaceTime where apparently the mute button didn't always

work as expected, of course, that would be a rather embarrassing mistake in some cases.

And our honeypots detected the use of a new username and password combination, and that's

Unipy and Unipy. Technology.

This particular username and password combination is the default password for devices created

by a company called Unipi Technology.

And, well, they're sort of in the business of kind of IoT, like home automation, business

control systems and the like. And yes, they're still using a default password. It is, however,

pointed out in their Quick Start guide as sort of a bold item at the top that you should probably change this

particular password. The malware being spread here, well, it smells, looks like Mirai. It also does

...