Apple discloses critical security vulnerabilities

Apple Discloses Critical Security Vulnerabilities.

Some security experts advise users to update some iPhones, iPads, and Macs. The full list is on our Webpage.

[{"selector":"#anim-54f9f943-5c57-457e-a1e6-409a51edc943","keyframes":{"opacity":[0,1]},"delay":0,"duration":2000,"easing":"cubic-bezier(0.2, 0.6, 0.0, 1)","fill":"both"}] [{"selector":"#anim-cb945a83-6a86-4fee-beac-4acac45aa2a6","keyframes":{"transform":["translate3d(100.00000%, 0px, 0)","translate3d(0px, 0px, 0)"]},"delay":0,"duration":2000,"easing":"cubic-bezier(0.2, 0.6, 0.0, 1)","fill":"both"}]

Apple has released a critical security vulnerability in iPhones, iPads, and Macs that could give attackers complete control over these devices.

[{"selector":"#anim-e7be9cd7-ef79-4ac9-bda1-822b79dfffaa","keyframes":{"opacity":[0,1]},"delay":0,"duration":2000,"easing":"cubic-bezier(0.2, 0.6, 0.0, 1)","fill":"both"}] [{"selector":"#anim-2e49a0a3-f41b-4168-96c4-4a8c6c89b978","keyframes":{"transform":["translate3d(100.00000%, 0px, 0)","translate3d(0px, 0px, 0)"]},"delay":0,"duration":2000,"easing":"cubic-bezier(0.2, 0.6, 0.0, 1)","fill":"both"}]

Tech giant Apple released two security reports about the issue on Wednesday. Unfortunately, it didn't get much attention outside of technical publications

[{"selector":"#anim-ac52613f-241b-4dff-af6b-14ab682d3d01","keyframes":{"opacity":[0,1]},"delay":0,"duration":2000,"easing":"cubic-bezier(0.2, 0.6, 0.0, 1)","fill":"both"}] [{"selector":"#anim-47486851-3bd6-46a7-8440-bfa83e549ff3","keyframes":{"transform":["translate3d(100.00000%, 0px, 0)","translate3d(0px, 0px, 0)"]},"delay":0,"duration":2000,"easing":"cubic-bezier(0.2, 0.6, 0.0, 1)","fill":"both"}]

Apple's description of the vulnerability means that hackers can gain "full administrative access" to the device.

[{"selector":"#anim-bcc9e0ce-af25-4336-b128-935cbbed087a","keyframes":{"opacity":[0,1]},"delay":0,"duration":2000,"easing":"cubic-bezier(0.2, 0.6, 0.0, 1)","fill":"both"}] [{"selector":"#anim-30711eb2-c37c-44be-9e3a-7ed1239be880","keyframes":{"transform":["translate3d(100.00000%, 0px, 0)","translate3d(0px, 0px, 0)"]},"delay":0,"duration":2000,"easing":"cubic-bezier(0.2, 0.6, 0.0, 1)","fill":"both"}]

This allows intruders to impersonate the device's owner and run arbitrary software on its behalf, said Rachel Tobac, CEO of SocialProof Security.

[{"selector":"#anim-7e9392a2-5999-4e8a-91bd-6db9a6a49095","keyframes":{"opacity":[0,1]},"delay":0,"duration":2000,"easing":"cubic-bezier(0.2, 0.6, 0.0, 1)","fill":"both"}] [{"selector":"#anim-ea056548-bafe-4f53-b568-cbfdf5922fd0","keyframes":{"transform":["translate3d(100.00000%, 0px, 0)","translate3d(0px, 0px, 0)"]},"delay":0,"duration":2000,"easing":"cubic-bezier(0.2, 0.6, 0.0, 1)","fill":"both"}]

Almost there! You are more than halfway through.

Some security experts advise users to update affected devices (iPhone 6S and newer models). This bug also affects some iPod models.

[{"selector":"#anim-cc055423-440a-4982-8247-1964695212e1","keyframes":{"opacity":[0,1]},"delay":0,"duration":2000,"easing":"cubic-bezier(0.2, 0.6, 0.0, 1)","fill":"both"}] [{"selector":"#anim-341186f3-fa8e-4a1a-98c2-36cbfee17dfc","keyframes":{"transform":["translate3d(100.00000%, 0px, 0)","translate3d(0px, 0px, 0)"]},"delay":0,"duration":2000,"easing":"cubic-bezier(0.2, 0.6, 0.0, 1)","fill":"both"}]

In its report, Apple did not say how, where, or by whom the vulnerability was discovered. An anonymous researcher was cited in all cases.

[{"selector":"#anim-2fb0bf53-4bce-4c8d-9bfe-9f82d7c749e9","keyframes":{"opacity":[0,1]},"delay":0,"duration":2000,"easing":"cubic-bezier(0.2, 0.6, 0.0, 1)","fill":"both"}] [{"selector":"#anim-63642d19-c8b6-4405-b5c4-d22866400d32","keyframes":{"transform":["translate3d(100.00000%, 0px, 0)","translate3d(0px, 0px, 0)"]},"delay":0,"duration":2000,"easing":"cubic-bezier(0.2, 0.6, 0.0, 1)","fill":"both"}]

Commercial spyware companies such as Israel's NSO Group exploit such vulnerabilities by covertly infecting the smartphones of targeted people.

[{"selector":"#anim-108cfd13-110b-4e86-9508-b70a23ff6fc3","keyframes":{"opacity":[0,1]},"delay":0,"duration":2000,"easing":"cubic-bezier(0.2, 0.6, 0.0, 1)","fill":"both"}] [{"selector":"#anim-4e8ed022-8563-4671-9714-b3777e1ea715","keyframes":{"transform":["translate3d(100.00000%, 0px, 0)","translate3d(0px, 0px, 0)"]},"delay":0,"duration":2000,"easing":"cubic-bezier(0.2, 0.6, 0.0, 1)","fill":"both"}]

By siphoning their content, and exploiting them with malware that monitors their targets in real-time. are known to identify and exploit.

[{"selector":"#anim-44437fb2-7330-4bae-8e48-e7480dc744e5","keyframes":{"opacity":[0,1]},"delay":0,"duration":2000,"easing":"cubic-bezier(0.2, 0.6, 0.0, 1)","fill":"both"}] [{"selector":"#anim-fe56b11c-c903-4979-ae55-80c671631fbc","keyframes":{"transform":["translate3d(100.00000%, 0px, 0)","translate3d(0px, 0px, 0)"]},"delay":0,"duration":2000,"easing":"cubic-bezier(0.2, 0.6, 0.0, 1)","fill":"both"}] Learn more