Apple released updates for the iPhone, iPad and Apple Watch over the weekend that all users should install immediately. The patches fix a dangerous zero-day vulnerability that hackers are actively exploiting.
Clement Lecigne and Billy Leonard of Google̵
Apple note notes is sadly thin on the details of the error itself, so we do not know much about it other than “treating malicious web content can lead to universal scripting across websites”, and that everyone iPhone, iPad and Apple Watch users even if you do not use Safari as your mobile browsing app.
Worse, Apple confirms that hackers are actively using the bug to attack users. There are no words on how extensive the attacks are or how they were specifically carried out, but it is serious enough that the company pushed emergency updates for the following devices:
- iPhone 6s and later
- iPod touch (7th generation)
- iPad Pro
- iPad Air 2 and newer
- iPad 5th generation and newer
- iPad mini 4 and newer
- Iphone 5s
- iPhone 6
- iPhone 6 Plus
- iPad Air
- iPad mini 2
- iPad mini 3
- iPod touch (sixth generation)
- Apple Watch Series 3 and later
Since we do not know much about the “maliciously crafted web content” that hackers use to exploit WebKit vulnerability, the only way to keep your devices and data safe is to install the updates on all current Apple products you own.
The updates should normally be downloaded automatically, but you can check for updates on your iPhone or iPad below Settings> General> Software update.
To update your Apple Watch, open the Watch app on your iPhone and go to My Clock> General> Software Update, or open the Settings app on your Apple Watch and go to General> Software Update.