August has seen a flurry of patches released by technology giants like Microsoft, Google Chrome, and Firefox to fix serious vulnerabilities. These patches are crucial as some of the flaws are already being exploited in attacks. While there was no iPhone update from Apple, major fixes were released for enterprise software, including Ivanti, SAP, and Cisco. Microsoft's Patch Tuesday fixed numerous vulnerabilities, including ones being actively targeted. Google Chrome also issued updates, addressing high impact flaws in V8 and WebRTC. Firefox patched various vulnerabilities, some of which could lead to arbitrary code execution. Lastly, Google patched several critical vulnerabilities in its Android operating system, including RCE issues in System and Media Framework.
Apple has released emergency security updates to fix two new zero-day vulnerabilities that were exploited in attacks targeting iPhone and Mac users, bringing the total number of exploited zero-days patched this year to 13.
Apple released updates for macOS 13.5.2, iOS 16.6.1, iPadOS 16.6.1, and watchOS 9.6.2, addressing security vulnerabilities that could be exploited by hackers, urging all users to install the updates as soon as possible.
Apple devices are vulnerable to a zero-click, zero-day vulnerability that allows the delivery of Pegasus spyware, even on the latest iOS version, with the exploit being referred to as BLASTPASS by researchers at Citizen Lab who collaborated with Apple on addressing the issue.
Apple has released iOS 16.6.1, an emergency update for iPhones, to fix two serious flaws that have been actively exploited by attackers to deliver spyware without user interaction.
Apple has urged iPhone users to update their operating systems due to a new security breach exploited by Israeli NSO's Pegasus spyware, causing concerns in Israel over potential backlash from the US.
iOS 17, Apple's largest annual software update for iPhone users, includes new features for Messages, FaceTime, and widgets, and is expected to be released in mid-September after beta testing, with support for devices featuring the A12 Bionic chip or newer.
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has ordered federal agencies to patch security vulnerabilities used in a zero-click iMessage exploit chain that infected iPhones with NSO Group's Pegasus spyware.
Apple will release a software update for iPhone 12 users in France to address radiation concerns raised by the country's regulators and bring the devices into compliance with European standards, but the regulators will test the update before lifting the marketing withdrawal order.
Apple is releasing operating system updates, including iOS 17, WatchOS 10, iPadOS 17, TVOS 17, and MacOS Sonoma, with new features and improvements for compatible devices.
After the release of iOS 16.6.1, Apple has stopped signing iOS 16.6, making it impossible to downgrade to the previous version, which is a common practice to encourage users to keep their systems updated; iOS 16.6.1 fixes a security vulnerability.
Google has released the September security update for Pixel phones, which is still based on Android 13, addressing 32 vulnerabilities and including a Pixel-specific CVE.
Apple has released emergency security updates to fix three new zero-day vulnerabilities that were exploited to target iPhone and Mac users, bringing the total number of zero-days fixed this year to 16. The vulnerabilities allowed attackers to bypass signature validation, execute arbitrary code, and escalate privileges. The impacted devices include iPhone 8 and later, iPad mini 5th generation and later, Macs running macOS Monterey and newer, and Apple Watch Series 4 and later. The zero-days were discovered and reported by security researchers at Citizen Lab and Google's Threat Analysis Group.
Apple has released urgent security updates to patch vulnerabilities actively exploited, including flaws in WebKit, certificate validation, and kernel access, which were part of an exploit chain used to plant the Pegasus and Predator spyware.
Users of Apple's iPhone, iPad, Apple Watch, and Mac are being warned to update their devices immediately due to active and sophisticated spyware attacks targeting high-profile individuals, with the security update addressing three critical vulnerabilities.
Apple has released a software update to address concerns about the iPhone 12 exceeding legal radiation exposure limits in France, potentially avoiding a ban on the device.
Google has released an emergency patch for a zero-day vulnerability in Chrome that was exploited by a commercial spyware vendor, and the vulnerability has been linked to the zero-click iMessage exploit chain used to deploy the NSO Group's Pegasus spyware on compromised iPhones.
Apple will release a software update to address overheating issues on the new iPhone 15 models, which are primarily caused by bugs in iOS 17 and certain third-party apps.
Apple has released the second betas of iOS 17.1 and iPadOS 17.1 to developers, introducing new features such as favoriting content, finishing AirDrop transfers over the internet, and using NameDrop with an iPhone and Apple Watch; it also includes a flashlight indicator and a Wallet feature for UK users.
Apple has released an emergency patch to address a serious security flaw that may have already been exploited by attackers, marking the 16th documented zero-day exploit against Apple's iOS, iPadOS, and macOS-powered devices.
iOS 17, Apple's biggest annual software update for iPhone users, was released on September 17, 2023, and includes new features for Messages, FaceTime, widgets, and more.
Apple plans to release a software update for the iPhone 12 in France to comply with radiation testing requirements and address concerns raised by regulators about excessive radiation levels emitted by the device when in contact with static surfaces.
