Apple attack

[Maik]

Apple products vulnerable to FORCEDENTRY zero-day attack – patch now!

Canadian privacy and cybersecurity activist group The Citizen Lab just announced a zero-day security hole in Apple’s iPhone, iPad and Macintosh operating systems.

To check for updates (and automatically fetch them if they haven’t been downloaded automatically yet), do this:

*    On an iPad or iPhone. Go to
      Settings > General > Software Update. If you are using iOS 14, you want 14.8.
*    On a MacBook laptop or a desktop Mac. Go to
      Apple menu > System Preferences > Software Update. If you are using macOS Big Sur 11, you want 11.6.

https://nakedsecurity.sophos.com/2021/09/14/apple-products-vulnerable-to-forcedentry-zero-day-attack-patch-now/

Apple has released security updates to fix two zero-day vulnerabilities that have been seen exploited in the wild to attack iPhones and Macs.

Apple zero-days run rampant in 2021

It has been a very busy year for Apple with what seems like an unending streaming of zero-day vulnerabilities used in targeted attacks against iOS and Mac devices.

https://www.bleepingcomputer.com/news/apple/apple-fixes-ios-zero-day-used-to-deploy-nso-iphone-spyware/

[Maik]

Apple emergency update fixes zero-days used to hack iPhones, Macs

Apple has released security updates on Thursday to address two zero-day vulnerabilities exploited by attackers to hack iPhones, iPads, and Macs.

Zero-day security bugs are flaws the software vendor is unaware of and hasn't patched.

The list of impacted devices includes:

    Macs running macOS Monterey
    iPhone 6s and later
    iPad Pro (all), iPad Air 2 and later, iPad 5th gen and later, iPad mini 4 and later, iPod touch (7^th gen)

Even though these zero-days were likely only used in targeted attacks, it's still strongly advised to install today's security updates as soon as possible to block potential attack attempts.

https://www.bleepingcomputer.com/news/security/apple-emergency-update-fixes-zero-days-used-to-hack-iphones-macs/

Here’s how to check your update status, and get the updates right away if you don’t have them already:

    On your iPhone or iPad: Settings > General > Software Update
    On your Mac: Apple menu > About this Mac > Software Update…

https://nakedsecurity.sophos.com/2022/04/01/apple-pushes-out-two-emergency-0-day-updates-get-em-now/

[Maik]

Apple emergency update fixes zero-day used to hack Macs, Watches

Apple has released security updates to address a zero-day vulnerability that threat actors can exploit in attacks targeting Macs and Apple Watch devices.

Zero-days are security flaws that the software vendor is unaware of and hasn't yet patched. In some cases, this type of vulnerability may also have publicly available proof-of-concept exploits before a patch arrives or may be actively exploited in the wild.

The list of impacted devices includes Apple Watch Series 3 or late, Macs running macOS Big Sur, Apple TV 4K, Apple TV 4K (2nd generation), and Apple TV HD.

Although this zero-day was most probably only used in targeted attacks, it's still strongly advised to install today's macOS and watchOS security updates as soon as possible to block attack attempts.

https://www.bleepingcomputer.com/news/security/apple-emergency-update-fixes-zero-day-used-to-hack-macs-watches/