Get all your news in one place.
100’s of premium titles.
One app.
Start reading
TechRadar
TechRadar
Lewis Maddison

Apple is rolling out some urgent iPhone and Mac security patches, so update now

Apple store in downtown at TKL

Apple has released several new security updates covering many of its devices, including iPhone, iPad and Mac, to fix various issues including a zero-day that has already been exploited.

The vulnerability affects the kernel, which controls the hardware of the device, and can allow bad apps to change its state. It is being tracked as CVE-2023-38606.

The zero day is the third vulnerability in Apple devices as part of operation triangulation, a cyberespionage campaign targeting iOS devices since 2019 which require no user clicks to become active.

Operation Triangulation

Researchers at Kaspersky are said to have discovered the operation and reported this latest flaw. It affects older version of iOS, with Apple stating that it, "is aware of a report that this issue may have been actively exploited against versions of iOS released before iOS 15.7.1."

Apple's fix entailed improving the state management of the device. 

Kaspersky lead researcher Boris Larin claims that this flaw is used to deploy the Triangulation spyware via an exploit in iMessage.

The new security updates are available for iOS, iPadOS, macOS (Big Sur, Monterey, and Ventura), tvOS, watchOS devices, as well as the Safari browser. 

Since the start of the year, Apple has patched a total of 11 zero days that have been exploited by attackers, affecting Macs, iPads and iPhones. It also recently released a fix for its WebKit where a vulnerability could have lead to arbitrary code execution. 

At the end of last year, the company also released its new Rapid Security Response feature, designed to get patches out to customers quicker, and used it for the first time in May this year to patch Macs, iPads and iPhones. 

Sign up to read this article
Read news from 100’s of titles, curated specifically for you.
Already a member? Sign in here
Related Stories
Top stories on inkl right now
Our Picks
Fourteen days free
Download the app
One app. One membership.
100+ trusted global sources.