Posted 3/5/2024, 9:34:30 PM
Apple Pushes Emergency Update to Fix Actively Exploited iOS Zero-Days in iPhones
- Apple released emergency updates for 2 iOS zero-day vulnerabilities that were being exploited in attacks on iPhones
- The flaws were found in the iOS Kernel (CVE-2024-23225) and RTKit (CVE-2024-23296), allowing attackers to bypass kernel protections
- The updates fix the issues for iOS 17.4, iPadOS 17.4, iOS 16.76, iPad 16.7.6 devices including various iPhone and iPad models
- While details are limited, iOS zero-days are often used in spyware attacks against high-risk individuals
- Apple fixed 20 zero-day flaws exploited in the wild last year, and has addressed 3 so far in 2024