Apple has released an update for iPhones, iPads and Watches to fix a vulnerability during active attack by hackers.
The security update lands as iOS 14.4.2 and iPadOS 14.4.2, which also covers an update to older devices such as iOS 12.5.2. watchOS is also updated to 7.3.3.
Apple said the vulnerability, discovered by security researchers at Google’s Project Zero, may have been “actively exploited” by hackers. The bug is found in WebKit, the browser engine that powers the Safari browser across all Apple devices.
It is not known who is actively exploiting the vulnerabilities, or who may have been the victim. Apple did not say whether the attack was aimed at a small subset of users, or whether it was a broader attack. This is the third time (of our number) that Apple has pushed out a security update this year to fix bugs during active attacks. Earlier this month, the company released updates for similar vulnerabilities in WebKit.