Security News > 2021 > March > Apple Issues Urgent Patch Update for Another Zero‑Day Under Attack
Merely weeks after releasing out-of-band patches for iOS, iPadOS, macOS and watchOS, Apple has issued yet another security update for iPhone, iPad, and Apple Watch to fix a critical zero-day weakness that it says is being actively exploited in the wild.
Apple has credited Clement Lecigne and Billy Leonard of Google's Threat Analysis Group for discovering and reporting the issue.
iOS 12.5.2 - Phone 5s, iPhone 6, iPhone 6 Plus, iPad Air, iPad mini 2, iPad mini 3, and iPod touch.
iPadOS 14.4.2 - iPad Pro, iPad Air 2 and later, iPad 5th generation and later, iPad mini 4 and later.
The latest release arrives close on the heels of a patch for a separate WebKit flaw that Apple shipped earlier this month.
Users of Apple devices are advised to install the updates as soon as possible to mitigate the risk associated with the flaw.
News URL
Related news
- CISA orders agencies to patch BeyondTrust bug exploited in attacks (source)
- Patch Tuesday: January 2025 Security Update Patches Exploited Elevation of Privilege Attacks (source)
- New Apple CPU side-channel attacks steal data from browsers (source)
- New SLAP & FLOP Attacks Expose Apple M-Series Chips to Speculative Execution Exploits (source)
- Zyxel CPE devices under attack via critical vulnerability without a patch (CVE-2024-40891) (source)