Apple fixes two critical zero-day vulnerabilities - updates strongly recommended
by Tina Siering
Users of Apple's iPhone, iPad and Mac devices are currently affected by two new critical zero-day vulnerabilities that the manufacturer says could already be actively exploited by hackers:
The vulnerability, designated CVE-2022-32893, is found in WebKit, Apple's HTML rendering software. It allows criminals to execute unauthorized malicious code on iPhones, iPads and Macs via manipulated web applications.
CVE-2022-32894 directly affects the kernel, the central component of Apple's operating system. Attackers who exploit this vulnerability can significantly escalate privileges, gaining a level of administrative rights normally reserved for Apple itself.
The Apple products affected by the vulnerabilities are:
- Macs running macOS Monterey
- iPhone 6s and higher
- iPad Pro (all models), iPad Air 2 and newer, iPad 5th generation and newer, iPad mini 4 and newer, and iPod Touch (7th generation).
Due to the increasing media coverage, it can be assumed that the number of attacks on the security vulnerabilities will rise.
Recommended action:
Apple has already published emergency updates on the support page that fix the vulnerabilities. Users of affected Apple devices should apply these patches immediately.#
Safe versions: iOS: from 15.6.1, macOS: from 12.5.1
Allgeier secion customers with an active managed service contract for Active Cyber Defense (ACD) will of course be informed separately about malicious communications on their systems.
Need help upgrading your IT security for 2022? Contact us!
Related articles
The reports about critical security vulnerabilities in Atlassian products do not stop. The Australian software company is currently warning of three serious vulnerabilities in numerous of its applications and services. The manufacturer has already published updates and urgently advises users to install the latest software version in order to close the security gaps.
The critical vulnerability (CVE-2022-26134, CVSS score: 9.8) in Atlassian Confluence Server and Data Center products patched in early June continues to be actively exploited for ransomware attacks: In at least two incidents, attackers exploited the vulnerability to spread malicious malicious code (e.g., Cerber ransomware, Cobalt Strike via web shell, Mirai and Kinsing bot variants, and a crypto miner called z0miner).
Read more … Atlassian Confluence vulnerability continues to be actively exploited!
The cybersecurity industry is more dynamic and rapidly changing than any other sector. Today's insights may already be outdated tomorrow. Because at the same pace as IT security develops new measures to protect IT infrastructure, networks, and endpoints, cyber criminals bring new tools to the market, refine attack methods, or use unknown techniques to successfully carry out cyber attacks. Anyone who wants to stay as well informed as possible in the multi-layered environment is dependent on regular updates. This applies equally to technically interested users and IT staff. One popular source of information in Germany is the podcast. More than 40% of all Germans regularly listen to podcasts - one fifth of them daily. We asked our IT security consultants for recommendations on ethical hacking and present our top 5 most popular cybersecurity podcasts here.