Chuck Darwin

Update your Apple devices now: Apple fixed two zero-days exploited to hack iPhones and Macs

Apple has released emergency security updates to address two new zero-day vulnerabilities exploited in attacks to compromise iPhones, Macs, and iPads.

"Apple is aware of a report that this issue may have been actively exploited," the company said when describing the issues in security advisories published on Friday.

The two zero-day vulnerabilities were addressed in
👉iOS 16.4.1,
👉iPadOS 16.4.1,
👉macOS Ventura 13.3.1, and
👉Safari 16.4.1
with improved input validation and memory management.

Apple says the list of affected devices is quite extensive

https://www.bleepingcomputer.com/news/apple/apple-fixes-two-zero-days-exploited-to-hack-iphones-and-macs/

Apple fixes two zero-days exploited to hack iPhones and Macs

Apple has released emergency security updates to address two new zero-day vulnerabilities exploited in attacks to compromise iPhones, Macs, and iPads.

BleepingComputer
Apr 7, 2023 at 7:08pmWeb
Show threadChuck DarwinApr 7, 2023

The two flaws in Apple operating systems had been reported by Clément Lecigne of Google's Threat Analysis Group and Donncha Ó Cearbhaill of Amnesty International's Security Lab.

Both organizations regularly disclose campaigns exploiting zero-day bugs abused by government-sponsored threat actors to deploy commercial spyware on the smartphones and computers of politicians, journalists, dissidents, and other high-risk individuals worldwide.

Show threadKikiApr 10, 2023
@cdarwin
Are older macOS versions not affected? Or does Apple just not care enough about people who are still using them to also provide updates for those?