Skip to main content
  1. Home
  2. Wearables
  3. Computing
  4. News

Update your Apple devices now to fix these dangerous exploits

Add as a preferred source on Google

If you’re an Apple user — whether you have a Mac, an iPhone, an iPad, or an Apple Watch — you need to update your devices as soon as possible. That’s because Apple has discovered three actively exploited vulnerabilities that could cause your devices serious harm, and the patches are already out to fix them.

One of the bugs was found in Apple’s Security framework and would allow a malicious app to completely bypass a device’s signature validation. Another bug concerns the WebKit browser engine and could grant a threat actor the ability to run arbitrary code when a victim views a certain web page.

A person using a laptop with a set of code seen on the display.
Sora Shimazaki / Pexels

The third exploit was a flaw in a target device’s kernel that would let an attacker elevate their own privileges in the system, although it would require the person to have physical access to the device.

Recommended Videos

Commenting on the discoveries, Apple said: “Apple is aware of a report that this issue may have been actively exploited” on its devices in the wild.

Affected devices run the gamut of Apple products, and include the iPhone 8 or later, the iPad mini 5th generation or later, the Apple Watch Series 4 or later, and any Mac running macOS Monterey or later. If you have any of these devices, it’s important that you check for updates as soon as possible.

Apple devices are not invulnerable

A locked iPhone, showing the lock icon at the top of the screen.
Digital Trends

Bypassing security measures, running malicious code, and gaining higher system privileges than expected could all be very dangerous for a victim’s system and highlight the ever-present threat from hackers and cybercriminals.

The number of bugs that have been discovered — and the broad range of devices they affect — makes this a particularly serious incident. It also aptly demonstrates that Apple products are not invulnerable and can be affected by malware.

All three exploits were discovered by Maddie Stone of Google’s Threat Analysis Group and Bill Marczak of the Citizen Lab at The University of Toronto’s Munk School. Just over a week ago, Citizen Lab announced the discovery of another major exploit that affected almost any app and web browser that could display WebP images, making it a major threat to millions of users around the world.

Fortunately, Apple moved quickly to fix all three of the bugs discussed earlier in this article. The patches were rolled out in macOS 12.7 and 13.6, iOS 16.7 and iOS 17.0.1, iPadOS 16.7 and 17.0.1, and watchOS 9.6.3 and 10.0.1. Make sure you update your devices as soon as possible to ensure they are safe.

Alex Blake
Alex Blake has been working with Digital Trends since 2019, where he spends most of his time writing about Mac computers…
Samsung wants its upcoming Galaxy Watch to be your AI health companion
Ahead of its July 22 Unpacked event, Samsung has teased AI-driven health tracking and upgraded internals for its upcoming smartwatches.
A person wearing the Samsung Galaxy Watch Ultra showing the Ultra Analogue watch face.

Samsung's July 22 Galaxy Unpacked event won't be all about new foldables. The company has also started teasing its next-gen smartwatches, and its pitch leans heavily on AI. In a newsroom post published ahead of the event, Samsung promises "a whole new level of effortless wellness," describing the upcoming watches as an "AI-powered health companion."

From tracking to interpreting

Read more
You can paint this wearable on your skin like a tattoo to monitor your heart and brain activity
This tattoo makes you look cooler - and it could save your life too
Painted electrodes on skin

Wearable health trackers have become smaller, smarter and more capable over the years, but they've also remained surprisingly… boring. Whether it's a smartwatch, a chest strap or a sticky ECG patch, most health sensors still rely on bulky hardware that can peel off, irritate the skin or become less accurate once you start sweating. Additionally, there is a shift of technology from plastic wearables/trackers to clothes, which seemingly do the same thing as well. But that is not the story today.

Researchers at Penn State think they've found a far more elegant solution. Instead of sticking another sensor onto your skin, why not simply paint one?

Read more
Pebble is finally catching up on Time 2 orders, and I appreciate the transparency
Here's exactly when your Pebble Time 2 ships, plus what Pebble is doing for the small percentage of watches arriving with hardware problems.
Electronics, Digital Watch, Wristwatch

If you've been refreshing your order tracking page for months, Pebble just gave you an actual date to mark on your calendar. The company's July mega-update reveals exactly when the remaining Pebble Time 2 pre-orders will finally ship.

Beyond shipping updates, the July report also offers a clear look at how the company is handling its return to the smartwatch market. 

Read more