Apple quickly released important security updates for macOS and iOS to fix two vulnerabilities already being exploited in zero-day attacks on Intel-based Mac systems. Google’s Threat Analysis Group (TAG) has pinpointed these vulnerabilities, which are especially problematic because they handle harmful web content that can result in major security problems.
Zero-day threats exposed
The vulnerabilities tracked as CVE-2024-44308 and CVE-2024-44309 are serious threats due to their potential for arbitrary code execution and cross-site scripting (XSS) attacks.
- CVE-2024-44308 relates to JavaScriptCore, wherein processing maliciously crafted web content may permit an attacker to execute arbitrary code. Apple is aware of reports that this issue may have already been exploited on Intel-based Macs.
- CVE-2024-44309 concerns WebKit, indicating that similar tactics could lead to XSS attacks. Again, Apple mentions awareness of the active exploitation of Intel-based Mac systems.
These vulnerabilities are labeled as “zero-day” due to Apple’s lack of awareness when exploited, intensifying the situation. Naturally, these attacks have the potential to endanger user information and the integrity of devices, underscoring the importance of users confirming their devices are secure.
Why Apple’s latest updates are critical for your device security
Apple advises all users in its ecosystem to quickly install the newest software updates: iOS 18.1.1, macOS Sequoia 15.1.1, and the older iOS 17.7.2. Apple’s quick reaction highlights the severity of the vulnerability threat.
Apple is not sharing details about the attacks or indicators of compromise (IOCs), but security professionals believe they may be connected to state-sponsored actors due to TAG’s participation. This team examines state-sponsored hacking and cyber assaults and expresses worries over specific, advanced dangers.
The two vulnerabilities are especially concerning as they target the web engines that drive Apple’s Safari browser and handle web content— WebKit and JavaScriptCore. In the past, malicious hackers have been drawn to WebKit to exploit its vulnerabilities and access more device capabilities and user data.
The cyber threats that have occurred recently are not individual events. Earlier in the month, cybercriminals from North Korea started a new scheme aimed at macOS users who were involved in stealing cryptocurrency. This campaign employed phishing emails and fake PDF applications, using smart tactics to bypass Apple’s security measures, demonstrating these threats’ continuous and changing nature.
Security experts stress the significance of being vigilant as cyberattacks persist and cause alarm. Users must actively install software updates and stay vigilant about possible phishing scams that may risk their devices’ security.
This scenario emphasizes that cyber safety is a duty everyone must take part in. Users in the Apple ecosystem should stay vigilant and regularly update their devices, as Apple is quick to respond to any issues.
Featured image credits: MEHRAX/Unsplash
