Apple fixes another zero-day used to deploy NSO iPhone spyware

3 years ago
September 23, 2021
0 replies
11 views

+54

Jasper_The_Rasper
Moderator
11629 replies

September 23, 2021 By Sergiu Gatlan

Apple fixes another zero-day used to deploy NSO iPhone spyware

Apple has released security updates to fix three zero-day vulnerabilities exploited in the wild by attackers to hack into iPhones and Macs running older iOS and macOS versions.

Based on the info shared by Apple in today's security advisories [1, 2] at least one of the bugs (reported by The Citizen Lab) was likely used to deploy NSO Pegasus spyware on hacked devices.

The three security flaws are tracked as CVE-2021-30860 (in the CoreGraphics framework), CVE-2021-30858 (in the WebKit browser engine), and CVE-2021-30869 (in the XNU operating system kernel), and they were reported by Citizen Lab, Google, and anonymous security researchers.

Full Article.

Be the first to reply!

Reply

Related Topics

Apple fixes zero-days used to deploy Triangulation spyware via iMessage

Apple Drops Another WebKit Zero-Day Bug

Newly found zero-click iPhone exploit used in NSO spyware attacks

Pegasus Spyware Uses iPhone Zero-Click iMessage Zero-Day

QuaDream, 2nd Israeli Spyware Firm, Weaponizes iPhone Bug

Sign up

Login to the community

Scanning file for viruses.

This file cannot be downloaded