Head of Branded Content, AccountingWEB
Share this content
Security risk affecting all apple devices patched by an update - AccountingWeb - Image of an apple with a worm coming out of it.
istock-bad-apple

Apple releases update to remove new security risk

by

Anyone using an Apple iPhone or other Apple device has been urged to download and install the latest software update to remove a newly identified security risk.

14th Sep 2021
Head of Branded Content, AccountingWEB
Share this content

Users of Apple devices should ensure their iOS mobile device or desktop/laptop operating software is up-to-date after the US firm released an update on 13 September to close a security loophole that could allow a device to be hacked or spied on without any input or action from the user.

The security vulnerability was first identified by the Citizen Lab at the University of Toronto. “While analysing the phone of a Saudi activist infected with NSO Group’s Pegasus spyware, we discovered a zero-day zero-click exploit against iMessage. The exploit, which we call FORCEDENTRY, targets Apple’s image rendering library, and was effective against Apple iOS, MacOS and WatchOS devices,” the Toronto researchers explained.

Not normally known for avoiding publicity, Apple has not been particularly active in notifying its millions of users of the issue; more attention has been lavished on the announcement of a new iPhone 13. On my devices at the time of writing, there were no alerts or notifications that a new update was available. However, after opening software update on my devices, I was able to download and install the updates. This may be an attempt to ensure that their servers are not overloaded with update requests.

Apple security chief Ivan Krstic said that “after identifying the vulnerability used by this exploit for iMessage, Apple rapidly developed and deployed a fix in iOS 14.8 to protect our users”.

Replies (0)

Please login or register to join the discussion.

There are currently no replies, be the first to post a reply.