Artwork

Content provided by Marc David. All podcast content including episodes, graphics, and podcast descriptions are uploaded and provided directly by Marc David or their podcast platform partner. If you believe someone is using your copyrighted work without your permission, you can follow the process outlined here https://ppacc.player.fm/legal.
Player FM - Podcast App
Go offline with the Player FM app!

Security Update: Urgent iOS Update Alert for iPhone Users

3:26
 
Share
 

Manage episode 376447008 series 3503174
Content provided by Marc David. All podcast content including episodes, graphics, and podcast descriptions are uploaded and provided directly by Marc David or their podcast platform partner. If you believe someone is using your copyrighted work without your permission, you can follow the process outlined here https://ppacc.player.fm/legal.

Attention iPhone users! Apple has just released an emergency update, iOS 16.6.1, which addresses two critical vulnerabilities that have been actively exploited in real-world scenarios. Here's what you need to know:

  1. The Flaws: The first vulnerability is associated with ImageIO, identified as CVE-2023-41064. This flaw could let attackers execute malicious code through a specially crafted image. The second vulnerability is linked to Apple's Wallet, labeled as CVE-2023-41061. This could allow attackers to execute code via a malicious attachment. Apple has confirmed that both these issues have been actively exploited.
  2. Real-Life Implications: These vulnerabilities aren't just theoretical. They've been used in real-life attacks to deploy spyware without any user interaction. Notably, the infamous Pegasus spyware, which grants attackers full access to iPhones, has been linked to these flaws. Citizen Lab, a security research group, discovered an exploit named "BLASTPASS" that compromised iPhones running iOS 16.6 without any user interaction.
  3. Why Update Now: Given the severity of these vulnerabilities, it's crucial to update to iOS 16.6.1 immediately. Even if you believe you're not a direct target, the more these flaws are known, the higher the risk of them being used maliciously. Independent security researcher, Sean Wright, emphasizes the importance of updating promptly. For those concerned about potential compromises, tools like iVerify can be used to check device security. Additionally, Apple's Lockdown Mode can be activated for those at higher risk, though it does limit device functionality.
  4. Broader Impacts: It's not just iPhones. The Wallet vulnerability is also present in Apple Watch, and the ImageIO issue has been addressed in a new Mac update. Ensure all your Apple devices are updated for maximum security.
  5. How to Update: Even if you've set your iPhone for automatic updates, it's recommended to manually check and update to ensure you have the latest protection. Navigate to iPhone Settings > General > Software Update and install iOS 16.6.1.

Listeners, in the ever-evolving world of technology, staying updated is not just about getting the latest features; it's about ensuring your personal security. Always prioritize updates, especially those addressing security concerns.

---

I do hope you enjoyed this episode of the podcast. Here's some helpful resources including any sites that were mentioned in this episode.

--

Sites Mentioned in this Episode


--

Find subscriber links on my site, add to your podcast player, or listen on the web players on my site:

Listen to Byte Sized Security

--

Support this Podcast with a Tip:

Support Byte Sized Security

  continue reading

43 episodes

Artwork
iconShare
 
Manage episode 376447008 series 3503174
Content provided by Marc David. All podcast content including episodes, graphics, and podcast descriptions are uploaded and provided directly by Marc David or their podcast platform partner. If you believe someone is using your copyrighted work without your permission, you can follow the process outlined here https://ppacc.player.fm/legal.

Attention iPhone users! Apple has just released an emergency update, iOS 16.6.1, which addresses two critical vulnerabilities that have been actively exploited in real-world scenarios. Here's what you need to know:

  1. The Flaws: The first vulnerability is associated with ImageIO, identified as CVE-2023-41064. This flaw could let attackers execute malicious code through a specially crafted image. The second vulnerability is linked to Apple's Wallet, labeled as CVE-2023-41061. This could allow attackers to execute code via a malicious attachment. Apple has confirmed that both these issues have been actively exploited.
  2. Real-Life Implications: These vulnerabilities aren't just theoretical. They've been used in real-life attacks to deploy spyware without any user interaction. Notably, the infamous Pegasus spyware, which grants attackers full access to iPhones, has been linked to these flaws. Citizen Lab, a security research group, discovered an exploit named "BLASTPASS" that compromised iPhones running iOS 16.6 without any user interaction.
  3. Why Update Now: Given the severity of these vulnerabilities, it's crucial to update to iOS 16.6.1 immediately. Even if you believe you're not a direct target, the more these flaws are known, the higher the risk of them being used maliciously. Independent security researcher, Sean Wright, emphasizes the importance of updating promptly. For those concerned about potential compromises, tools like iVerify can be used to check device security. Additionally, Apple's Lockdown Mode can be activated for those at higher risk, though it does limit device functionality.
  4. Broader Impacts: It's not just iPhones. The Wallet vulnerability is also present in Apple Watch, and the ImageIO issue has been addressed in a new Mac update. Ensure all your Apple devices are updated for maximum security.
  5. How to Update: Even if you've set your iPhone for automatic updates, it's recommended to manually check and update to ensure you have the latest protection. Navigate to iPhone Settings > General > Software Update and install iOS 16.6.1.

Listeners, in the ever-evolving world of technology, staying updated is not just about getting the latest features; it's about ensuring your personal security. Always prioritize updates, especially those addressing security concerns.

---

I do hope you enjoyed this episode of the podcast. Here's some helpful resources including any sites that were mentioned in this episode.

--

Sites Mentioned in this Episode


--

Find subscriber links on my site, add to your podcast player, or listen on the web players on my site:

Listen to Byte Sized Security

--

Support this Podcast with a Tip:

Support Byte Sized Security

  continue reading

43 episodes

All episodes

×
 
Loading …

Welcome to Player FM!

Player FM is scanning the web for high-quality podcasts for you to enjoy right now. It's the best podcast app and works on Android, iPhone, and the web. Signup to sync subscriptions across devices.

 

Quick Reference Guide

Copyright 2025 | Privacy Policy | Terms of Service | | Copyright
Listen to this show while you explore
Play