Security News > 2021 > May > Apple products hit by fourfecta of zero-day exploits – patch now!
Unlike vendors such as Microsoft, Google Android and Mozilla, security updates emerge from Cupertino HQ whenever Apple thinks the time is right.
For the protection of our customers, Apple doesn't disclose, discuss, or confirm security issues until an investigation has occurred and patches or releases are generally available.
As we've said before, Apple rarely deviates from this stony-faced silence, which can be annoying when there's a security problem in Apple's code that is commonly known and already being discussed widely, yet the company still won't say whether it's working on a fix at all.
From this, you might have inferred that the security hole was introduced to Apple's codebase after iOS 12 came out, and therefore didn't apply to the older iOS 12 version at all.
Any Apple device that supported iOS 13 when it came out must now be upgraded to iOS 14.5.1 in order to be up to date with security fixes.
That's because iOS 14 replaced iOS 13, which is no longer supported at all and therefore dangerously far behind on security updates.
News URL
Related news
- Apple Patches Two Zero-Day Attack Vectors (source)
- RomCom Exploits Zero-Day Firefox and Windows Flaws in Sophisticated Cyberattacks (source)
- Exploit released for critical WhatsUp Gold RCE flaw, patch now (source)
- Mitel MiCollab zero-day flaw gets proof-of-concept exploit (source)
- Mitel MiCollab zero-day and PoC exploit unveiled (source)
- New Windows zero-day exposes NTLM credentials, gets unofficial patch (source)
- Microsoft December 2024 Patch Tuesday fixes 1 exploited zero-day, 71 flaws (source)
- New Mirai botnet targets industrial routers with zero-day exploits (source)
- Zero-day exploits plague Ivanti Connect Secure appliances for second year running (source)
- Week in review: Exploited Ivanti Connect Secure zero-day, Patch Tuesday forecast (source)