<img alt="" src="https://secure.refl3alea.com/149779.png" style="display:none;">
it-blog.png

      Recommended Blogs

      • Apple releases urgent update to patch zero-day exploit

        An emergency update has been created in response to a zero-day exploit which allows access to users private data ...

        Read More
      • Video conferencing and online meeting security for the legal sector

        We’ve all now seen the video of the struggling lawyer trying to get to grips with video conferencing software and ...

        Read More
      • 10 things you can do now to improve cyber security for your legal business in 2021

        2020 encouraged businesses to think outside the box and use technology to their advantage. Whether this was to move a ...

        Read More
      • Cyber Insurance – Do we need it?

        In today's world, cyber threats are a constant and frequently varied risk to all organisations. When cyber-attacks ...

        Read More
      • The P@$$W0rd is dead!

        Passwords have always been a burden on both clients, service providers and IT departments; Rules of complexity, how a ...

        Read More
      Apple releases urgent update to patch zero-day exploit
      BY Richard Broadfield

      An emergency update has been created in response to a zero-day exploit which allows access to users private data through a browser bug on Apple mobile devices. Update your Apple mobile devices today including iPhones, iPads and Apple Watches, with Apple’s latest emergency patch. This includes older iPhone and iPad devices on IOS 12.


      Apple have stated that the vulnerability is “Processing maliciously crafted web content that may lead to universal cross site scripting. Apple is aware of a report that this issue may have been actively exploited.”

       

      Cross Site Scripting (XSS) is web security vulnerability which can allow an attacker to steal credentials and masquerade as a user, to carry out any actions that the user is able to perform, and to access any of the user's data. If successful, an attacker can gain full control of a user’s profile and/or application.

       

      As this particular vulnerability is a universal XSS bug, it can affect all websites you visit on your device, rather than a specific site. To protect yourself from this exploit you will need to update your Apple devices as the bug is in your browser.

       

      You will need to patch the vulnerability yourself by updating your own devices.

       

      How to update your Apple Device:

      To update your devices and check the latest install, go to Settings > General > Software Update.

      If your device is on the following or previous versions, you will need to urgently update:

      • iOS 14 (recent iPhones): update to 14.4.2
      • iOS 12 (older iPhones and iPads): update to 12.5.2
      • iPadOS 14: update to 14.4.2
      • watchOS: update to 7.3.3

      More information is available from Apple’s official security pages for iOS and iPadOS 14.4.2, for iOS 12.5.2, and for watchOS 7.3.3.

       

      If you would like more information about how to secure your devices please call Sprout IT today on 020 7036 8530 or email us here. 

       

      Cyber Security cyber threat Exploit Apple Update Devices