Security News > 2022 > February > Apple patches new zero-day exploited to hack iPhones, iPads, Macs
Apple has released security updates to fix a new zero-day vulnerability exploited in the wild by attackers to hack iPhones, iPads, and Macs.
Successful exploitation of this bug allows attackers to execute arbitrary code on iPhones and iPads running vulnerable versions of iOS and iPadOS after processing maliciously crafted web content.
In January, Apple patched two other zero-days exploited in the wild that could allow threat actors to achieve arbitrary code execution with kernel privileges and track browsing activity and users' identities in real-time.
These first two zero-days impacted iPhones, Macs running macOS Monterey, and multiple models of iPads.
While Apple has patched only three zero-days since the start of 2022, the company had to deal with an almost interminable stream of zero-days exploited in the wild to target iOS, iPadOS, and macOS devices.
The list includes multiple zero-day flaws used to install NSO's Pegasus spyware on iPhones belonging to journalists, activists, and politicians.
News URL
Related news
- Apple fixes two zero-days used in attacks on Intel-based Macs (source)
- Fraudsters imprisoned for scamming Apple out of 6,000 iPhones (source)
- Apple Releases Urgent Updates to Patch Actively Exploited Zero-Day Vulnerabilities (source)
- Apple fixes 2 zero-days exploited to breach macOS systems (CVE-2024-44309, CVE-2024-44308) (source)
- Apple Patches Two Zero-Day Attack Vectors (source)