Apple warns of security flaw in devices
Attention all readers, Apple released two security reports which disclosed serious security vulnerabilities for iPhones, iPads, and Macs. These vulnerabilities could potentially allow attackers to take complete control of devices.
Apple’s explanation of the vulnerability means a hacker could get “full admin access” to the device. That would allow intruders to impersonate the device’s owner and subsequently run any software in their name, said Rachel Tobac, CEO of Social- Proof Security.
Security experts are advising users to update affected devices — the iPhone 6s and later models; several models of the iPad, including the 5th generation and later, all iPad Pro models and the iPad Air 2; and Mac computers running macOS Monterey. The security flaw also affects some iPod models.
Apple did not explain in its reports how, where, or by whom the vulnerabilities were discovered, instead citing an anonymous researcher.
Commercial spyware companies such as Israel’s NSO Group are known for identifying and taking advantage of such flaws, exploiting them in malware that surreptitiously infects targets’ smartphones, siphons their contents, and surveils the targets in real-time.
Security researcher Will Strafach said he had seen no technical analysis of the vulnerabilities that Apple has just patched. The company has previously acknowledged similarly serious flaws and, on what Strafach estimated to be perhaps a dozen occasions, has noted that it was aware of reports that such security holes had been exploited.
Before installing the updates, it’s a good idea to backup your device. To update your iPhone or iPad, click on Settings > General > Software Update. To update your Mac, open System Preferences and select the Software Update preference pane.