Update your Apple devices now to fix these dangerous exploits

If you’re an Apple user — whether you have a Mac, an iPhone, an iPad or an Apple Watch — you need to update your devices as soon as possible. That’s because Apple has discovered three actively exploited vulnerabilities that could cause your devices serious harm, and the patches are already out to fix them.

One of the bugs was found in Apple’s Security framework and would allow a malicious app to completely bypass a device’s signature validation. Another concerns the WebKit browser engine, and could grant a threat actor the ability to run arbitrary code when a victim views a certain web page.

Sora Shimazaki / Pexels

The third exploit was a flaw in a target device’s kernel that would let an attacker elevate their own privileges in the system, although it would require the person to have physical access to the device.

Related

  • This dangerous new Mac malware steals your credit card info

  • Vital security update for Apple devices takes only a few minutes to install

  • Have an iPhone, iPad, or Apple Watch? You need to update it right now

Commenting on the discoveries, Apple said: “Apple is aware of a report that this issue may have been actively exploited” on its devices in the wild.

Recommended Videos

Affected devices run the gamut of Apple products, and include the iPhone 8 or later, the iPad mini 5th generation or later, the Apple Watch Series 4 or later, and any Mac running macOS Monterey or later. If you have any of these devices, it’s important that you check for updates as soon as possible.

Apple devices are not invulnerable

Digital Trends

Bypassing security measures, running malicious code and gaining higher system privileges than expected could all be very dangerous for a victim’s system and highlight the ever-present threat from hackers and cybercriminals.

The number of bugs that have been discovered — and the broad range of devices they affect — makes this a particularly serious incident. It also aptly demonstrates that Apple products are not invulnerable and can be affected by malware.

All three exploits were discovered by Maddie Stone of Google’s Threat Analysis Group and Bill Marczak of the Citizen Lab at The University of Toronto’s Munk School. Just over a week ago, Citizen Lab announced the discovery of another major exploit that affected almost any app and web browser that could display WebP images, making it a major threat to millions of users around the world.

Fortunately, Apple moved quickly to fix all three of the bugs discussed earlier in this article. The patches were rolled out in macOS 12.7 and 13.6, iOS 16.7 and iOS 17.0.1, iPadOS 16.7 and 17.0.1, and watchOS 9.6.3 and 10.0.1. Make sure you update your devices as soon as possible to ensure they are safe.

Related posts

Latest posts

Get Apple’s 10th Gen iPad for $279.00 at Amazon ($70 Off)

Amazon has Apple's 10th generation iPad (64GB Wi-Fi) for $279.00 in three colors, down from $349.00. Stock has begun dwindling

Post Cyber Week savings: Take $350 off this HP 27-inch all-in-one

Invest in the ultimate desktop setup with the HP 27-inch All-in-One (model CR1064), now on sale at Best Buy for $900. That’s a $350 discount.

Google Docs is tapping into Gemini to whip up formatted documents

With Gemini, you can now create formatted docs in Google Docs from scratch.

The Galaxy S25 Ultra could bump up RAM in its higher-end models

Certain Galaxy S25 Ultra models might get a nice performance upgrade.

World’s First Apple Pay Alternative for iPhone Launches in Norway

Norwegian payment service Vipps has become the world's first company to launch a competing tap-to-pay solution to Apple Pay on

Apple Hit With $1.2B Lawsuit Over Abandoned CSAM Detection System

Apple is facing a lawsuit seeking $1.2 billion in damages over its decision to abandon plans for scanning iCloud photos

OLED iPad Mini Could Launch as Soon as 2026

Apple is likely to introduce a new iPad mini with an OLED display as soon as 2026, market research firm

Windows 11 Recall officially comes to Intel and AMD

Windows Recall is finally rolling out to a broader set of Copilot+ PCs, now including Intel and AMD laptops.

Best apps to get your phone Christmas ready

Whether you love the holidays or not, it's that time of year again. Here are some apps and games to help make the holidays a little easier.

How the iPhone 16 won the battle of the camera button

Two new smartphones approach secondary camera controls in very different ways, forcing me to choose between a futuristic option or the luxury of a button.