Apple security update today5/8/2023 However, the company was most recently accused of targeting 50,000 phone numbers on behalf of its clients. NSO Group did not immediately respond to a request for comment. Researchers raised the alarm Monday about a big one: The Israeli spyware company NSO Group, which sells programs for governments to remotely take over people’s smartphones and computers, had. The same iPhone contained suspicious GIF files that were actually Adobe PDFs designed to exploit the flaw.Ĭitizen Lab is warning that NSO Group has likely been using ForcedEntry since at least February to infect the latest Apple devices. According (Opens in a new window) to Citizen Lab, which has dubbed the bug ForcedEntry, NSO Group allegedly used the vulnerability to spread a powerful spyware program known as Pegasus, which can secretly take over an iPhone.Ī researcher at Citizen Lab discovered the vulnerability while examining an iPhone belonging to an anonymous Saudi activist. The attack can arrive via iMessage when a maliciously crafted PDF is sent. In addition, the flaw affects iOS, iPadOS, macOS Catalina and BigSur, along with watchOS.Īpple is urging people to update immediately to iOS and iPadOS 14.8, macOS Big Sur 11.6, Security Update 2021-005 for macOS Catalina (and Safari 14.1.2), tvOS 14.7, and watchOS 7.6.2.Īpple credited the vulnerability's discovery to Citizen Lab, a watchdog group at the University of Toronto, which suspects an Israeli security company called NSO Group exploited the flaw to help governments spy on targets. The first vulnerability, dubbed CVE-2021-30860, is particularly alarming because it can take over a device simply by sending a message to the victim, no user interaction required. 2 days ago &0183 &32 Wednesday Ma3:32 am PDT by Hartley Charlton. That’s when an attacker can trigger the device to run rogue computer code, such as downloading a malicious program from the internet. The update provides important bug and security fixes for the iPhone including one flaw that has already been used by bad actors. The company issued (Opens in a new window) the security patches today while warning the vulnerabilities could lead to remote code execution. Apple has issued its iOS 16.3.1 software update. Apple has uncovered evidence that attackers may be actively exploiting two vulnerabilities in company software to take over its devices. How to Set Up Two-Factor Authentication.How to Record the Screen on Your Windows PC or Mac.
0 Comments
Leave a Reply. |