New Threat Research: Uncovering Adversarial LDAP Tradecraft

Read Threat Research

Search

Apple Releases Emergency Update

Apple has released an emergency update for their iOS, iPadOS, and watch OS. The patches are numbered iOS 14.4.2, iPadOS 14.4.2, and watchOS 7.3.3. The vulnerability, which was discovered by Google’s Threat Analysis Group, impacts Apple’s WebKit browser engine, and makes this an urgent update as Apple claims that this vulnerability is being actively exploited. Details from Apple are limited, but such vulnerabilities could be used to redirect users to phishing sites or install malware simply by visiting a malicious website. To accentuate the seriousness of the vulnerability is the fact that Apple has released iOS 12.5.2 for older devices – IPhone 5s, iPhone 6 and 6 plus, iPad air, iPad mini-2, iPad mini-3, and the iPod touch 6th generation.

Analyst Notes

This patch is an extremely serious security patch. To install on these devices, go to settings, then general then software update. For the apple watch, just go to the Apple watch app. This patch should be installed as soon as possible. Companies that issue iOS devices should advise all their users to update their devices or force the update through a Mobile Device Management (MDM) solution.

To read more: https://www.zdnet.com/article/apple-releases-emergency-update-for-iphones-ipads-and-apple-watch/

Apple support link: https://support.apple.com/en-us/HT212258