Apple launched the newest updates for its iPhone, iPad, and Mac working programs on Monday, which included switching on Apple Intelligence by default for newer units.
As a part of this batch of software program updates, Apple additionally launched a number of patches fixing security bugs, together with a zero-day bug that “might have been actively exploited” — which means hackers had been utilizing it to compromise units — in opposition to customers with iPhones operating software program older than iOS 17.2, which was launched in December 2023.
The bug was present in Core Media, the media engine that powers a spread of Apple units, and is now mounted throughout its product line, together with iPhones, iPads, Macs, Apple TVs, Apple Watches, and its mixed-reality headset, Imaginative and prescient Professional. Apple mentioned hackers might have “elevated privileges” by exploiting a reminiscence corruption bug, which might have allowed broader entry to a tool’s information.
Apple didn’t credit score the bug discovery to any researcher, because it typically — however not at all times — does. A spokesperson for Apple didn’t instantly remark when requested for extra particulars about who exploited the bug and in opposition to whom.
That is the primary bug present in iOS this yr that was exploited within the wild. For reference, Apple mounted a minimum of seven bugs that “might have been actively exploited” in 2024, based on information.killnetswitch’s operating tally.