Security News > 2021 > September > iOS 15 launches with 22 documented security patches – including a Face ID bypass using a “3D model”
Bypass attacks against Face ID have been announced before, notably by a Vietnamese researcher who claimed in 2017 to be able to get past Face ID using a mask, and by Chinese researchers from cybersecurity company Tencent in 2019, who were able to get around Face ID's "Are you awake?" detection and unlock the device of someone who was asleep.
Along with updates for the otherwise brand-new iOS 15, iPadOS 15, tvOS 15 and watchOS 8, the latest security announcements also cover iTunes, macOS, Safari and Apple's Xcode developer tools, as well as iOS 14.8 and iPadOS 14.8.
It turns out that the iOS 14.8 update fixed a number of other security holes as well, including many that were also fixed in iOS 15.
With iOS 15 out, and iOS 14 still officially supported, we're assuming that iOS 12, now the pre-previous version, is no longer going to get any more updates, in the same way that Apple is calling out just Big Sur and Catalina by name for macOS updates.
So it's Catch-22 for iOS 12: if there aren't going to be any more security patches, then we won't find out until there's a security advisory to say so; but there won't be a security advisory to say so until there's another security patch.
Sophos mobile security products already support iOS 15,and will therefore continue working seamlessly after you update from iOS 14.
News URL
Related news
- EDRSilencer red team tool used in attacks to bypass security (source)
- Hackers Abuse EDRSilencer Tool to Bypass Security and Hide Malicious Activity (source)
- North Korean hackers create Flutter apps to bypass macOS security (source)
- New iOS Security Feature Makes It Harder for Police to Unlock Seized Phones (source)
- iOS 18 added secret and smart security feature that reboots iThings after three days (source)