Home  ›  News  ›

Apple Issues Urgent iOS Patch for Major Security Vulnerability

Article Comments  

Sep 8, 2023, 7:37 AM   by Rich Brome   @richbrome
updated Sep 8, 2023, 7:43 AM

Apple has released iOS 16.6.1 for iPhones, which fixes an "actively exploited zero-click vulnerability". All iPhone and iPad owners should update their OS software immediately, as this is one of the most severe types of security issues. The vulnerability can be exploited with zero interaction from the victim; the attacker merely needs to send an iMessage with a maliciously crafted image. The Citizen Lab discovered the vulnerability — which they have dubbed "Blastpass" — being actively exploited in the wild and used to install NSO Group's Pegasus "mercenary spyware", which gives the attacker nearly complete access to the target device. Citizen Lab notes that iPhones in Lockdown Mode would not have been vulnerable to this exploit. Lockdown Mode is an existing feature of iOS that cuts off likely attack vectors. It's designed for people likely to be targeted for who they are or what they do. This particular exploit involves "a validation issue" with the PassKit API in Wallet, in combination with a buffer overflow issue in Apple's image-processing framework. Buffer overflows are a common cause of security vulnerabilities across most OSes.

Related
iPhone 14 Plus Offers a Big Screen For Less

Sep 7, 2022
Apple has revealed the iPhone 14 series, with new features, improved specs, and new size options. In place of a Mini option, the iPhone 14 will come in the same 6.1-inch and 6.7-inch screen size options as the Pro models.

Major Update to Google Messages Brings iPhone-Compatible Emoji Reactions

Mar 10, 2022
Google today started rolling out a major update to its Messages app, the default SMS and RCS messaging app on most new Android phones. It includes several major new features, but the biggest for most people may be automatic conversion and tidier display of emoji reactions from iPhone users .

iOS 16 Revamps the Lock Screen

Jun 6, 2022
Apple today announced iOS 16, the next version of its core software for iPhones. The new OS features a major revamp of the Lock Screen with new personalization, including font & color options, and widgets that are similar to complications on the Apple Watch.

Apple Watch Goes Ultra

Sep 7, 2022
Apple has refreshed its Apple Watch lineup with Series 8, a new Watch SE, and added a larger, more rugged Apple Watch Ultra for athletes and extreme adventurers. Apple Watch Series 8 has two main upgrades over Series 7: temperature sensors and Crash Detection.

Apple Sues NSO Group for Spyware Targeting iPhones

Nov 24, 2021
Apple today filed a lawsuit against NSO Group to "hold it accountable for the surveillance and targeting of Apple users." Apple is also seeking a permanent injunction to ban NSO Group, an Israeli company, from using any Apple software, services, or devices.

more news about:

Apple
iOS
 

Comments

This forum is closed.

This forum is closed.

No messages

 
 
Page  1  of 1

Subscribe to news & reviews with RSS Follow @phonescoop on Threads Follow @phonescoop on Mastodon Phone Scoop on Facebook Follow on Instagram

 

Playwire
Advertise on this site.

All content Copyright 2001-2024 Phone Factor, LLC. All Rights Reserved.
Content on this site may not be copied or republished without formal permission.