Apple has released emergency patches for outdated versions of the iPhone and Mac. The update eliminates the CVE-2023-41064 vulnerability and eliminates the possibility of remote hacking of devices for the purpose of subsequent monitoring of users using spyware developed by the Israeli company NSO Group.
Image source: tigerlily713/Pixabay
The iOS 15.7.9 update is intended for devices such as the iPhone 6s, iPhone 7 and iPhone SE, as well as the iPad Air 2. The company has also released patches for macOS Big Sur and Monterey, created for Mac models released since 2013.
Apple warned that hackers are actively exploiting the vulnerability by sending specially modified images that can cause an iPhone, iPad or Mac to execute malicious code, including downloading malware or visiting a malicious website.
The vulnerability was discovered by the information security group Citizen Lab during a scan of an employee’s device. “The exploit chain was able to compromise an iPhone running the latest version of iOS (16.6) without any intervention from the victim“,” noted Citizen Lab.
The US Cybersecurity and Infrastructure Security Agency (CISA) also warned of significant risks associated with this vulnerability and urged Apple users to immediately update their devices to avoid possible cyberattacks.
The situation with the vulnerability discovered in Apple products highlights the importance of timely updating device software to protect against cyber threats. Users can install patches by going to Settings → General → Software Update. Experts strongly recommend turning on the automatic update function so that the device installs the necessary patches on its own.
Add Comment