Story image

Apple users advised to update their software now, as new security patches released

17 May 2017

Welcome to the post-WannaCryptor world, where every computer user understands the importance of creating secure backups and applying security patches in a timely fashion.

What’s that? You’re not so sure that folks have learnt the lesson, despite the round-the-clock coverage in the mainstream media on what must have been one of the highest profile malware attacks in years?

Perhaps you’re right. It would be great to think that computer users learn from past experiences, and don’t make the mistake of thinking that malware attacks are something that happen to other people, and not themselves.

Historically, it’s all too clear – for instance – that many users of Apple products might be under the mistaken belief that they are somehow immune to the hack attacks and malware infections that can blight their Windows-loving friends.

The belief is perhaps understandable to an extent. The vast majority of malware being produced each day is built to run on the Windows platform, with the Android operating system lagging some way behind. You have to look a lot further down the chart before you will find attacks against Mac users and iOS.

But less attacks is not the same as zero attacks. And fans of Apple hardware would be taking a big risk if they don’t think it’s just as important to keep their operating systems, apps and programs patched to protect against the most recently discovered vulnerabilities.

On Monday Apple pushed out updates which are applicable for most of its customers: iOS 10.3.2 (for iPhone and iPad users), MacOS, OS X, watchOS 3.2.2, iTunes, Safari, tvOS and iCloud for Windows 6.2.1.

Just looking at the fixes that have been released for iPhones, iPads and Macs it is clear that scores of security vulnerabilities have been addressed.

For instance, now-fixed (providing you update!) security vulnerabilities in iBooks for iOS could have allowed a malicious hacker to force your iPhone to open websites without your permission and execute malicious code with root privileges.

Another flaw addressed for both iPhones and Macs could see attacks bypass built-in security features to read restricted memory, potentially opening the door for the theft of passwords and other sensitive information.

The good news is that users shouldn’t need to get into the nitty gritty of each and every security flaw addressed by the latest updates from Apple. Instead, resolve to update your systems at the earliest possible opportunity.

Apple products may find themselves in the firing line of attacks less often than their Windows and Android cousins, but that doesn’t mean they’re immune. If can learn anything from the events of the last few days it is surely the need to keep systems up-to-date and make regular backups of your data.

Update your Apple devices now, and don’t tempt fate.

Article by Graham Cluely, Welivesecurity.

Cryptomining apps discovered on Microsoft’s app store
It is believed that the eight apps were likely developed by the same person or group.
WhatsApp users warned to change voicemail PINs
Attackers are allegedly gaining access to users’ WhatsApp accounts by using the default voicemail PIN to access voice authentication codes.
Swiss Post asks public to hack its e-voting system
Switzerland’s postal service Swiss Post is inviting keen-eyed security experts and white hats to hack its e-voting system.
Spoofs, forgeries, and impersonations plague inboxes
It pays to double check any email that lands in your inbox, because phishing attacks are so advanced that they can now literally originate from a genuine sender’s account – but those emails are far from genuine.
Flashpoint signs on emt Distribution as APAC partner
"Key use cases that we see greatly benefiting the region are bolstering cybersecurity, combating insider threats, confronting fraud, and addressing supply chain risk, to name a few."
The attack surface: 2019's biggest security threat
As businesses expand, so does their attack surface – and that may be the biggest cybersecurity risk of them all, according to Aon’s 2019 Cyber Security Risk Report.
Opinion: Cybersecurity as a service answer to urgent change
Alan Calder believes a CSaaS model can enable a company to build a cyber resilience strategy in a coherent and consistent manner.
Why SD-WAN is key for expanding businesses - SonicWall
One cost every organisation cannot compromise on is reliable and quick internet connection.