Urgent: Apple Patches Three Zero-Day Exploits Used by Pegasus Spyware
Apple has rushed out urgent security updates for iOS and iPadOS, fixing several critical vulnerabilities, including three zero-day exploits actively used by NSO Group's Pegasus iPhone spyware. Users are advised to update their devices immediately.
The latest updates, iOS and iPadOS 12.5.5 and 15.0, address almost 25 vulnerabilities in total. Among these, three critical zero-day exploits (CVE-2021-30835, CVE-2021-30847, and CVE-2021-30858) were found to be used by the NSO Group to deploy its Pegasus iPhone spyware on older models.
Apple has patched several arbitrary code execution vulnerabilities in the recent updates. These include CVE-2021-30860, CVE-2021-30869, and CVE-2021-30858 in iOS and iPadOS 12.5.5, and CVE-2021-30835 and CVE-2021-30847 in iOS and iPadOS 15.0. These updates are crucial for protecting users from potential data breaches and unauthorized access.
Apple urges all users to update their devices to the latest iOS and iPadOS versions to protect against these critical vulnerabilities. The updates are available for a wide range of iPhone and iPad models. Failure to update may leave devices exposed to cyber threats.
