1. Forum
  2. tqwNet
  3. TQW_GENTECH

  • iOS 14.8 and other emergency Apple software updates block invasiv

    From TechnologyDaily@1337:1/100 to All on Mon Sep 13 23:15:04 2021
    iOS 14.8 and other emergency Apple software updates block invasive spyware

    Date:
    Mon, 13 Sep 2021 21:52:04 +0000

    Description:
    iOS 14.8, macOS Big Sur 11.6 and other updates rushed out to block zero-click invasive spyware on consumer devices.

    FULL STORY ======================================================================

    A day before Apple is expected to release iOS 15 and other new software versions alongside the iPhone 13 launch, the company released iOS 14.8 as an emergency update to fix an exploit that allowed spyware reportedly like that used by the Israel-based NSO Group to infect iPhones, Apple Watches, and Mac computers without users needing to click on anything.

    The exploit is serious enough for Apple to have been sprinting to fix it
    since the company was alerted to it last Tuesday by Canadian cybersecurity firm Citizen Lab, per the New York Times . In addition to iOS 14.8, Apple released iPadOS 14.8, watchOS 7.6.2, and macOS Big Sur 11.6, which users are advised to download immediately. Its unclear if the exploit affects beta versions of upcoming software like iOS 15 (weve reached out to Apple to confirm).

    The spyware, called Pegasus, quietly downloaded PDF files (intentionally mislabeled as .gif images) to users devices without their permission and unlike other malicious code, without needing users to click on suspicious links or manually download files. Thus, this type of zero click exploit is even more dangerous, potentially existing on devices for months without the owners noticing.

    Once the PDFs got on a device, Pegasus could activate cameras and
    microphones, record messages and other communications (even if encrypted) and forward that info back to the cybersurveillance firm NSO Group and conceivably, its clients. Analysis: Update iOS 14? In our moment of iOS 15 triumph?

    If anything sells the importance of the iOS 14.8 update, its that Apple chose to rush it out ahead of iOS 15, which were expecting to arrive on September
    14 or shortly thereafter following the iPhone 13 launch. Given that every phone running iOS 14 (iPhone 6S and newer) will be able to download the new iOS 15, its telling that Apple pulled out the stops to make it available and didnt even beta test it, per 9to5Mac .

    To be clear, the iOS 14.8 update is undoubtedly much smaller than iOS 15, and the same is true for the minor updates coming to iPadOS, watchOS, and macOS so hopefully that makes it easier for folks to swallow.

    As previously mentioned, its unclear if this exploit worked on iOS 15 public beta and other early versions of other device software; since we havent seen similar spyware-blocking updates for the iOS 15 and iPadOS 15 betas, wed
    guess not. But Apple is getting wise to this type of exploit: the company confirmed to the New York Times that its adding spyware barriers to its next iOS 15 update later this year. Expect iPhone 13 and Apple Watch 7 on
    September 14, iPad and Mac to come later



    ======================================================================
    Link to news story: https://www.techradar.com/news/ios-148-and-other-emergency-apple-software-upda tes-block-invasive-spyware/


    --- Mystic BBS v1.12 A47 (Linux/64)
    * Origin: tqwNet Technology News (1337:1/100)