Apple on Monday issued emergency security updates for iOS, macOS, and its other operating systems.
Updates to patch the under-active-exploit vulnerability were released for iOS 14; macOS 11 and 10, aka Big Sur and Catalina, respectively; iPad OS 14; and watchOS 7.
According to Apple, the vulnerability can be exploited by “processing a maliciously crafted PDF,” which “may lead to arbitrary code execution.” The phrase “arbitrary code execution” is Apple's way of saying that the bug was of the most severe nature; Apple does not provide rank threat level of vulnerabilities, unlike operating system rivals such as Microsoft and Google.
Apple credited The Citizen Lab for reporting the flaw.
Also, on Monday, Citizen Lab, a cybersecurity watchdog organization that operates from the Munk School of Global Affairs & Public Policy at the University of Toronto, released a report outlining what it found (Select to view compiled report). “While analyzing the phone of a Saudi activist infected with NSO Group's Pegasus spyware, we discovered a zero-day zero-click exploit against iMessage,”
This post is provided to assist both our clients as well as the general public. We respect the copyright within this posting. In downloading and updating your computer, mobile phone, or smart device, please take caution. You can click here for instructions on how to complete updates on your device (provided by Apple). For Mac users, Click here for instructions on how to update your notebook or computer (provided by Apple).
Apple Stock Quote Data: