New Apple Update Won’t Let Spying On You
Apple released an iOS 14.8 update that won’t let the government spy on your devices anymore.
Recently, one of the Apple security vulnerabilities has been successfully used by the Israeli government to spy on its citizens and foreigners. Pegasus spyware, developed by Israeli security company “NSO group,” let it get the data from the Saudi activist’s phone through the iMessage. It definitely caused the public concern about the security problem with Apple devices after it had been revealed.
Apple paid attention to its security problem thanks to the research laboratory Citizen Lab, which had analyzed the Saudi activist’s iPhone infected by the NSO spyware, and discovered a zero-day vulnerability affecting all iOS devices. This spyware enabled access to the iOS rendering library, thus, getting all the data from there. It was possible due to the Apple fragility in rendering images. Citizen Lab revealed this flaw in March 2021 and disclosed this vulnerability to Apple. In September 2021, Apple fixed the problem for iOS 14.8 on all devices, including iPhone, iPad, Mac, and Apple Watch.
The flaw exploits all the Apple software, including the latest iOS 14 with its 14.4 and 14.6 updates. To avoid this security issue, you need to update your iOS devices to the latest 14.8 version. Apple assured its users that this update is resistant to this kind of zero-day vulnerability. Moreover, at its annual devices rollout, Apple paid much attention to security issues and promised that iOS 15 would have much more improved security.
Revealing this flaw is not the very first time Citizen Lab has found vulnerabilities in Apple security. In 2016, NSO had already exploited Desktop Safari and Mac OS X, and that problem was also solved with the help of updates. What do you think of the Apple security problem? Do you find it critical? And can we still trust our data to Apple devices? We would appreciate it if you share your thought in the comments.