Apple has released new software updates across its line of products to fix two safety weaknesses, which the company said they may have been actively used to hacked clients running its mobile software, iOS.
In the security tips posted on its website, Apple confirmed that it adjusted the two weaknesses of the zero day, which “may have been used in an extremely sophisticated attack against specific individuals in iOS.”
Errors are considered zero days because they were unknown to Apple while being used.
It is still unknown who is behind the attacks or how many Apple’s clients were targeted, or if any had been successfully compromised. An Apple spokesman did not return the Techcrunch’s investigation.
Apple credited the discovery of one of two errors for security researchers working in the Google Threat Analysis Group, which investigates government -backed internet attacks. This may indicate that the attacks aimed at Apple’s clients were launched or coordinated by a nation state or government agency. Some government -backed cyber attacks are known to include the use of spyware planted by distance and other telephone devices.
A Google spokesman did not comment immediately when it was reached by Techcrunch.
Apple said one of the errors affects Apple’s essential audio, the system level ingredient that Apple uses through its various products to allow developers to interact with the device audio. Apple said the error can be used by processing an audio stream on a maliciously created media file, which can allow malfunctioning code execution on a affected Apple device.
The other mistake Apple received a single loan to discover allows an attacker to bypass the indicator certificate, a security feature Apple uses in his program to make the attackers more difficult to corrupt or inject the malicious code into a device.
Apple released a software update for Macos Sequoia, slamming the software version on 15.4.1, and released iOS 18.4.1 that regulates security errors on iPhone and iPads. Apple TV and Vision Pro Mixed Company’s mixed headphones also received the same security updates.
