Apple has released a critical software patch to repair a security vulnerability after researchers discovered a security flaw that would allow hackers to infect your Apple devices even if you do nothing, and don’t click on a link.
The zero-day attack was discovered by the researchers at the Citizen Lab. The Citizen Lab said the zero-click flaw allowed Pegasus spyware from Israeli hacker-for-hire firm, NSO Group, to infect the iPhone of a Saudi activist by sending an image file via iMessage. The zero-click vulnerability gives attackers full access to a device’s camera, microphone, messages, texts, emails, calls, and more.
The NSO Group says it will continue to provide intelligence and law enforcement agencies around the world with life-saving technologies to fight terror and crime.
Head of Apple Security Engineering and Architecture, Ivan Krstić, thanked Citizen Lab for obtaining the exploit as this made it easy to quickly develop a patch. He went further to say, such attacks are highly sophisticated, cost millions of dollars to develop, often have a short shelf life, and are used to target specific individuals.
Users are thus encouraged to update their devices.
To update your Apple device.
Go to Settings.
Click on General.
Click on Software Update.
Click on Automatic Updates, then turn on Download iOS Updates.
And click Install Now.
Note, some updates might need to be installed manually.