Security News > 2020 > January > Apple Security Updates Tackle iOS Device Tracking
Apple's latest security fixes, released Tuesday, tackle a wide range of bugs, including several patches for high-risk flaws that could allow for remote code execution.
The fixes address vulnerabilities in Apple's Xcode, watchOS, Safari, iTunes for Windows, iOS, iPadOS, macOS and tvOS. The most severe of the bugs include four RCE flaws in Apple TV's operating system, tvOS - each rated high-severity.
After some sleuthing by the site's author, Brian Krebs, he determined the tracking feature was tied to the use of Apple's own U1 chip, which was introduced in 2019 and used for the first time in iPhone 11S. The U1 chips uses Ultra-Wideband technology and aims to improve the performance of Apple services such as AirDrop.
In their wake, Apple has faced criticism for what critics see as a piecemeal release of the OS. Last month Apple updated the OS to iOS 13.3, which marked the third update to the iOS and iPadOS 13 since it debuted in on Sept. 19.
Since iOS 13's release, Apple has also had to issue a number of security patches, including ones for a keyboard bug and a lock-screen bypass flaw.
News URL
https://threatpost.com/apple-patches-ios-device-tracking/152364/
Related news
- Apple Releases Critical iOS and iPadOS Updates to Fix VoiceOver Password Vulnerability (source)
- Apple Opens PCC Source Code for Researchers to Identify Bugs in Cloud AI Security (source)
- New iOS Security Feature Makes It Harder for Police to Unlock Seized Phones (source)
- iOS 18 added secret and smart security feature that reboots iThings after three days (source)