Apple release iOS 10.3.3 earlier this year which underwent a quick update as soon as some major security issues were discovered across various functions of the system.
The security update that we are talking about here affects the iPhone 5 and the models that came after that. Besides, it also affected iPad 4th gen and later, and 6th generation iPod Touch as well.
Talking about the flaws, they enabled the attackers operating remotely to be able to terminate apps or run some arbitrary code across many iOS systems. The apps and system areas that could be affected include contacts, notifications, messages, telephony, Safari, wifi and various other system functions like libxpc, kernels, CoreAudio and EventKitUI.
It was possible for the attackers to be able to use wifi chip of the device, and the users got the feeling that infinite print dialogues caused their browser to freeze.
47 CVE Apple
47 CVE updates and 24 areas were listed for the iOS 10.3.3 and most of these were actually discovered by Baidu Security Lab, Project Zero of Google, security researchers and the university professors.
As claimed by Apple, it does not confirm or discuss any of the security problems until it investigates it and makes relevant updates and patches available.
Even though there are still many iOS users who are of the opinion that their devices are still pretty much immune against hacking attacks, but the proofs given by security organizations actually tell another story.
Earlier in the year, Graham Clueley of ESET said in one of his blogs that such updates aren’t about highlighting each and every flaw that comes in the system – it serves as encouragement for everyone to keep their systems updated and do it at their earliest.
He further said that Apple products do not come in firing line too often as compared to Android and Windows, but still it does not mean that they are completely immune. One really needs to learn from events taking place in recent times and should keep their systems updated as well as backup their data regularly.
Spyware like XAgent, AceDeceiver and Pegasus are also targeting iOS as well as other devices from Apple.
Other cases that took place this year also included OSX/Dok that came somewhere in April. The Trojan was discovered by the researchers from Check Point. It managed to get through the security features of Apple and hijacked all the Mac traffic.
In March Last Year
KeRanger – a variant of some ransomware – managed to encrypt the devices from Apple. This ransomware was actually introduced through an update to Transmission Torrent client 2.9.0. After that, it managed to run itself alongside other software and encrypted files secretly.
Jin Chen and Claud Xiao from Palo Alto Network explained the working pattern of KeRanger. They said that KeRanger was actually signed with some valid certificate for Mac application development. And, that allowed it to bypass the Gatekeeper protection of Apple. Apple revoked that certificate pretty quickly in the bid to keep that ransomware from further attacks.
So, if you haven’t got this security update from Apple installed on your iOS device yet, act quickly and install it before something goes wrong.
More from Technology
6 unannounced updates to Google My Business we’ve seen in 2017 Google has been quietly rolling out new features and updates …