Security News > 2023 > July > Urgent! Apple fixes critical zero-day hole in iPhones, iPads and Macs
The second-ever Apple Rapid Security Response just came out.
The last point above is surprisingly important, given that Apple absolutely will not allow you to uninstall full-on system updates to your iPhones or iPads, even if you find that they cause genuine trouble and you wish you hadn't applied them in the first place.
That's because Apple doesn't want users to be able to downgrade on purpose to reintroduce old bugs that they now know can be used for jailbreaking devices or installing an alternative operating system, even on devices that Apple itself it no longer supports.
T]hey deliver important security improvements between software updates - for example, improvements to the Safari web browser, the WebKit framework stack or other critical system libraries.
Browsing on its own is meant to be comparatively low risk, given that the browser itself is supposed to programmed to shield you from immediate harm.
Depends on the browser not having any security bugs through which booby-trapped content could circumvent the browser's own security shields and subject you to what's jocularly known as a drive-by install or a look-and-get-pwned attack.
News URL
Related news
- Apple backports fix for RTKit iOS zero-day to older iPhones (source)
- Apple: Mercenary spyware attacks target iPhone users in 92 countries (source)
- Zero-Day Alert: Critical Palo Alto Networks PAN-OS Flaw Under Active Attack (source)
- Apple Alerts iPhone Users in 92 Countries to Mercenary Spyware Attacks (source)
- Critical Update: CrushFTP Zero-Day Flaw Exploited in Targeted Attacks (source)