September 20, 2021
Apple owners: Time to update your software. Apple has uncovered evidence that attackers may be actively exploiting two vulnerabilities in company software to take over certain Apple devices, including iPhones.
The company issued the security patches last week while warning the vulnerabilities could lead to remote code execution. That’s when an attacker can trigger the device to run rogue computer code, such as downloading a malicious program from the internet.
The first vulnerability, dubbed CVE-2021-30860, is particularly alarming because it can take over a device simply by sending a message to the victim, no user interaction required. In addition, the flaw affects iOS, iPadOS, macOS Catalina and BigSur, along with watchOS.
WHAT DOES THIS MEAN FOR ME?
Apple is urging users to update immediately to iOS and iPadOS 14.8, macOS Big Sur 11.6, Security Update 2021-005 for macOS Catalina (and Safari 14.1.2), tvOS 14.7, and watchOS 7.6.2. If you have not done so already, go to your settings and ensure that your device has the latest software installed.