Apple’s iOS 14 fixes three important security vulnerabilities that are actively attacked by hackers

Apple’s iOS 144 has cool new features for your iPhone, but this is also a major security update. This is because it fixes three major security vulnerabilities that Apple has admitted may already have been actively exploited ”

Apple is not releasing details with security fixes, mainly so that users can update their iPhones before more potential attackers have access to the details, according to an Apple support document, the first exploited vulnerability in the operating system kernel may allow a malicious application to gain permissions increase ”

The other two bugs in Apple’s WebKit, the engine that powers the Safari browser, could allow an attacker to execute code. The CVE-2021-1871 and CVE-2021-1870 vulnerabilities were also reported by an anonymous researcher / p>

Lots of people like to wait a while to update their iPhones to new iOS versions to avoid bugs, or they are just too busy. Sometimes that’s fine, but with iOS 144 it’s important as soon as possible to update

If something has been exploited, it means that attackers are already successfully using it to attack Apple users.There is a lot that we don’t know: for example, who is being attacked by attackers and who may have already been a victim

The kernel vulnerability is “certainly of concern,” said Sean Wright, director of application security for SMBs at Immersive Labs, “especially given the reason to believe that it is being actively exploited””

According to Wright, attackers could likely chain the WebKit vulnerability to remotely exploit the kernel, adding to the risk ”

Apple will likely release more details on the bugs soon, but one thing is clear: keeping your iPhones and iPads updated should keep attackers from taking advantage of these bugs

Sure, we don’t know the details of the iPhone security issues yet, but that’s even more of a reason to upgrade to the new version Don’t panic, but make sure you download and install iOS 144 as soon as you can >

I am a freelance cybersecurity journalist with over a decade of experience writing news, reviews, and features reporting and analyzing cybersecurity and privacy violations

I am a freelance cybersecurity journalist with over a decade of experience writing news, reviews, and features.I report and analyze breaking stories on cybersecurity and privacy with a particular interest in cyber war, application security, and data abuse by the big tech companies alongside Forbes See my work in Wired, The Times, The Economist and The Guardian Contact me at Kateoflaherty @ techjournalistcoUnited Kingdom

iOS 144

World News – USA – iOS 144: Update Now Warning for all iPhone users