Date:
November 21, 2024
Apple has issued an urgent update warning to all iPhone and MAC users over recently identified security vulnerabilities being exploited by hackers.
Apple is one of the best tech companies when it comes to security measures, but even the best can miss out on critical vulnerabilities. Though rare, Apple recently identified two alarming security vulnerabilities in its iOS 18.1.1 and two bugs in MAC systems that required immediate rectification from the users’ end.
Apple has prompted all its users to immediately update their systems and mobile devices to the latest version before online threat actors could exploit them for malicious intent. For MAC users, the bugs exist in WebKit and JavaScriptCore, which Safari and other web content use. The Webkit is a bigger threat as it can be exploited to infiltrate devices and extract private data.
By processing malicious web content, hackers can run unauthorized codes on a system. Apple has addressed the issue by adding an enhanced validation layer that prevents further exploitation. Apple noted that these attacks were specifically targeted on Intel-based MAC systems.
“Apple is aware of a report that this issue may have been actively exploited on Intel-based Mac systems,” said the company on its support page. Apart from MAC devices, iPhones also fell into the threat radar of hackers this month.
After the iOS 18.1.1 release, two new vulnerabilities emerged, both of which were used for real-life attacks. Apple has prompted an immediate update notice to all iPhone users for a vague reason to safeguard its users, stating that it “provides important security fixes and is recommended for all users.”
The main reason why Apple kept the reason unclear is to prevent other online threat actors from accessing the vulnerabilities and exploiting users who may have ignored or delayed their updates. The only thing that we know about the security issue is that it is classified as CVE-2024-44308 and acts on JavaScriptCore.
The second issue is classified as CVE-2024-44309 and acts on a flaw in the WebKit that underpins Apple’s Safari browser. For those who chose not to update to iOS 18 stable versions, Apple has updated the iOS 17.7.2 version, addressing both the security vulnerabilities.
