Apple has released security updates (iOS 14.8 and iPadOS 14.8) for a zero-day vulnerability that affects every iPhone, iPad, Mac and Apple Watch. Citizen Lab discovered the vulnerability and was credited with the find, urges users to immediately update their devices.
The interdisciplinary laboratory based at the Munk School of Global Affairs & Public Policy, University of Toronto said it has discovered new artifacts of the ForcedEntry vulnerability, details it first revealed in August. The revelation was part of Citizen Lab’s investigation into the use of a zero-day vulnerability that was used to silently hack into iPhones belonging to at least one Bahraini activist.
The Citizen Lab said ForcedEntry impacts all iPhones running iOS versions before 14.8, all Mac computers running OSX prior to Big Sur 11.6 Security Update 2021-005 Catalina, and Apple Watches running prior to watchOS 7.6.2. In its disclosure that came with the operating system updates, Apple additionally stated that iPhone 6s and later, all models of iPad Pro, iPad Air 2 and later, iPad 5th generation and later, iPad mini 4 and later, and iPod touch 7th generation are at risk.
Toshihiro Koike CEO of Cyber Security Cloud Inc. (CSC), had this to say about the incident:
“The zero click remote exploit targeting Apple products reveals how cyber criminals are constantly evolving and growing more sophisticated. Consumers need to be vigilant to detect any unusual activity, stay current and download software updates, and be aware that sometimes you can be victimized without any action on your part. Preventing a cyberattack is like preventing a home invasion: you must continuously update your security and educate the persons behind the walls.”
Article provided with permission from AppleWorld.Today
