Skip to main content

Update your Apple devices now to fix these dangerous exploits

If you’re an Apple user — whether you have a Mac, an iPhone, an iPad, or an Apple Watch — you need to update your devices as soon as possible. That’s because Apple has discovered three actively exploited vulnerabilities that could cause your devices serious harm, and the patches are already out to fix them.

One of the bugs was found in Apple’s Security framework and would allow a malicious app to completely bypass a device’s signature validation. Another bug concerns the WebKit browser engine and could grant a threat actor the ability to run arbitrary code when a victim views a certain web page.

A person using a laptop with a set of code seen on the display.
Sora Shimazaki / Pexels

The third exploit was a flaw in a target device’s kernel that would let an attacker elevate their own privileges in the system, although it would require the person to have physical access to the device.

Recommended Videos

Commenting on the discoveries, Apple said: “Apple is aware of a report that this issue may have been actively exploited” on its devices in the wild.

Affected devices run the gamut of Apple products, and include the iPhone 8 or later, the iPad mini 5th generation or later, the Apple Watch Series 4 or later, and any Mac running macOS Monterey or later. If you have any of these devices, it’s important that you check for updates as soon as possible.

Apple devices are not invulnerable

A locked iPhone, showing the lock icon at the top of the screen.
Digital Trends

Bypassing security measures, running malicious code, and gaining higher system privileges than expected could all be very dangerous for a victim’s system and highlight the ever-present threat from hackers and cybercriminals.

The number of bugs that have been discovered — and the broad range of devices they affect — makes this a particularly serious incident. It also aptly demonstrates that Apple products are not invulnerable and can be affected by malware.

All three exploits were discovered by Maddie Stone of Google’s Threat Analysis Group and Bill Marczak of the Citizen Lab at The University of Toronto’s Munk School. Just over a week ago, Citizen Lab announced the discovery of another major exploit that affected almost any app and web browser that could display WebP images, making it a major threat to millions of users around the world.

Fortunately, Apple moved quickly to fix all three of the bugs discussed earlier in this article. The patches were rolled out in macOS 12.7 and 13.6, iOS 16.7 and iOS 17.0.1, iPadOS 16.7 and 17.0.1, and watchOS 9.6.3 and 10.0.1. Make sure you update your devices as soon as possible to ensure they are safe.

Alex Blake
Alex Blake has been working with Digital Trends since 2019, where he spends most of his time writing about Mac computers…
Apple’s foldable device has me worried about this one key problem
The Zenbook Fold 17 open on a table.

I’m a lover of mechanical keyboards, so ever since I learned that Apple is supposedly working on a foldable tablet-slash-laptop, there was one concern that piqued my interest above all others: what will it be like to type on?

After all, we know that Apple is at least considering a device like this. The company was recently granted a new patent detailing just such a product, and a slew of reliable leakers and supply chain analysts have exposed Apple’s plans in remarkable detail.

Read more
Apple’s iPhone 16e is here, and it’s making me frustrated about the MacBook
A group of iPhone 16e phones arranged in a pattern.

The new iPhone 16e is here, and it’s the biggest revamp in the history of Apple’s affordable iPhone line. With Face ID security, an A18 chip and USB-C connectivity, it’s an overhaul that touches almost every part of the device.

Perhaps the most momentous change, though, is the introduction of a large, 6.1-inch OLED display. This is the first time the now-renamed iPhone SE has had an all-screen front face, and it’s also the first time it’s been infused with OLED technology.

Read more
Apple is no longer working on smart glasses to rival Meta
Ray-Ban Meta Wayfarer smart glasses

It's been a rumor for some time now that Apple had a pair of AR glasses in development, but a new report from Mark Gurman says the company has cancelled the project. Apple has expressed a lot of interest in the AR/VR space, but its first attempt with the Vision Pro didn't make the splash the company expected. Its over-the-top price and more professionally-focused applications led to fewer sales and a lot of excess stock.

The goal was to create a competitor to the Meta's Ray-Ban smart glasses, but Gurman says the cancellation comes in the wake of an attempt to change and improve the design of the glasses. The first version of the glasses would link with an iPhone, but its limited power meant applications were limited — and the demands of the device also had an impact on phone battery life. Apple pivoted and focused on linking the glasses with a Mac instead, but that was met with poor evaluations. The development team reportedly dealt with frequently-changing goals, adding to the difficulty, until the project was cancelled.

Read more