Apple releases emergency update to fix zero-day exploited in attacks(bleepingcomputer.com)
bleepingcomputer.com
Apple releases emergency update to fix zero-day exploited in attacks
https://www.bleepingcomputer.com/news/apple/apple-releases-emergency-update-to-fix-zero-day-exploited-in-attacks/
27 comments
You're assuming a click/tap is involved. Several iOS exploits are 0-click.
Your pedantry is noted, but this would not change the answer to the question at all.
Persistence is not needed when they can just access your device any time. That part was what addressed your question.
Thanks for clearing that up. My question was meant more about after a device is patched.. how you can know it's secure.
Forensic approach is to get a disk image(iOS just has backups) and analyze that. You can't ever be 100% sure. Can't prove a negative (no compromise) you can only prove positives based on the state of the device you can measure.
Personally, I only use mobile devices for internet browsing and using apps like uber, I only have like one app I should probably stop using but to the most part I always assume any mobile device out there is or can readily be compromised.
Personally, I only use mobile devices for internet browsing and using apps like uber, I only have like one app I should probably stop using but to the most part I always assume any mobile device out there is or can readily be compromised.
Would be pretty difficult to find an exploit that avoids the boot chain attestation features. Good reason why a lot of exploits require you to reapply them every reboot.
Persisting in the fs is much harder than just getting code execution. Not impossible (nothing is) but much harder (and thus likely less common), due to signature checking
looks like update has been pulled for now https://forums.macrumors.com/threads/apple-releases-rapid-se...
What about older OSes? Are they not vulnerable or simply ignored?
Apple only releases Rapid Security Response updates for the latest versions of its operating systems [1]. So any devices running iOS 16.4.X or MacOS 13.3.X won't see one, and anything before that didn't support Rapid Security Response updates. Unfortunately there's not enough information available to know if older releases are vulnerable.
[1] https://support.apple.com/en-us/HT201224
[1] https://support.apple.com/en-us/HT201224
> Unfortunately there's not enough information available to know if older releases are vulnerable.
Assume YES.
Assume YES.
https://arstechnica.com/gadgets/2022/10/apple-clarifies-secu...
I remember just after this announcement was the first super-critical update for ventura. It was about 31 days before older OS versions got the patch, even though they were identified as vulnerable at the time of the ventura update. :(
I remember just after this announcement was the first super-critical update for ventura. It was about 31 days before older OS versions got the patch, even though they were identified as vulnerable at the time of the ventura update. :(
Apple also released Safari 16.5.2 for Big Sur and Monterey to address this: https://support.apple.com/en-us/HT213826
Hell, what about newer OSes ...like iOS 17 Beta? visionOS 1 Beta?
Betas don't need a rapid response; people running beta can wait.
Though for all you know this bug doesn't even exist in the newer versions. Or the mitigation was already in the beta but this rapid response required an extra day for testing as it is being shipped to users.
Though for all you know this bug doesn't even exist in the newer versions. Or the mitigation was already in the beta but this rapid response required an extra day for testing as it is being shipped to users.
people will run whatever.
recently the pixels had a remote exploit just by being connected to a 4g network. we got two victims in our group in the 3wk google took to patch (it was the first late security update on the same time)... and we did warn everyone to turn radio off (or limit to 3g if out of the us)... nobody cares and they just use the device thinking they won't be a target.
recently the pixels had a remote exploit just by being connected to a 4g network. we got two victims in our group in the 3wk google took to patch (it was the first late security update on the same time)... and we did warn everyone to turn radio off (or limit to 3g if out of the us)... nobody cares and they just use the device thinking they won't be a target.
This is interesting, it installs without a restart almost immediately.
My iPhone required a restart, but the whole process took less than 5 minutes.
My iPhone 14 pro max required a restart.
How do you know that an attacker is not persisting in the system if you click a bad link before a patch gets applied?