Unpatched flaw 'weaponises' Apple AirTags to turn them into the phisherman's friend
XSS vulnerability allows miscreants to hijack phone number field on website Apple has been accused of ignoring a vulnerability in the Lost Mode functionality of its AirTags location-tracking accessories which would allow an attacker to seed "weaponised AirTags" for harvesting the iCloud credentials of anyone who find them....