![]() ![]() "While that means they are not a threat to the overwhelming majority of our users, we continue to work tirelessly to defend all our customers, and we are constantly adding new protections for their devices and data."īe smart: "Users of mobile and computing platforms need to make checking for security updates a part of their weekly, if not daily routine," wrote Steve Turner, an analyst at the tech consulting firm Forrester, in a note emailed to Axios."Attacks like the ones described are highly sophisticated, cost millions of dollars to develop, often have a short shelf life, and are used to target specific individuals.What they're saying: "After identifying the vulnerability used by this exploit for iMessage, Apple rapidly developed and deployed a fix in iOS 14.8 to protect our users," said Ivan Krstić, head of Apple Security Engineering and Architecture, in a statement. Apple's security team has been "working around the clock to develop a fix," the Times writes.The same security flaw would enable the software to infect other Apple iPhones, watches and MacBooks, per the Post.Īn Apple spokesperson told the New York Times that it is planning to add new spyware barriers to its next software update, due out later this year.The device had been hacked using a "zero-click" method that had allowed the spyware to live on the Saudi's phone since February without detection, according to the Washington Post.The big picture: The security flaw was discovered by researchers at watchdog group Citizen Lab, which found that the phone of a Saudi political activist had been infected with the Pegasus spyware via iMessage. The company touts the security and privacy of its smartphones among its key selling points. Why it matters: The fix to the intrusion by the NSO Group's Pegasus software came the day before Apple is expected to introduce its latest crop of iPhones. You can find out more in Apple Issues Emergency Security Updates to Close a Spyware Flaw at the New York Times.Apple released emergency security updates Monday after it was discovered that an Israeli cyber surveillance company's spyware could infect iPhones and other devices without the owner even clicking on a link. One of the senior researchers, John Scott-Railton, also urged Apple customers to run their software updates immediately, “Do you own an Apple product? Update it today.” ![]() In a recent interview with the New York Times, Apple’s head of security engineering and architecture Ivan Krstić urged customers to run the latest software updates for the fixes to take effect, by installing iOS 14.8, MacOS 11.6, and WatchOS 7.6.2.Ĭitizen Lab, a cybersecurity watchdog organization at the University of Toronto, discovered an iPhone had been infected with the advanced form of spyware from NSO. The spyware, named Pegasus, from Israel’s NSO Group is able to infect Apple devices without victims’ knowledge. This code execution is what allows spyware to run on your devices. Apple is aware of a report that this issue may have been actively exploited,” according to the security note. While the updates list what might be just basic improvements to CoreGraphics and WebKit, it actually stops the devices from “ Processing a maliciously crafted PDF may lead to arbitrary code execution. Just a day before Apple’s September event, Apple has released the iOS 14.8, iPadOS 14.8, macOS 11.6, and WatchOS 7.6.2 security updates.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |