More Patches for Rotten Apple Zero-Days

Cory Hanks
April 1, 2022

Share This Post

Apple rushed out patches for two zero-days; remediating one vulnerability that affects both macOS and iOS. These zero-day vulnerabilities are tracked as CVE-2022-22675 (iOS) and CVE-2022-22674 (macOS). Their discovery was attributed to an anonymous researcher.

Both vulnerabilities are likely under active exploitation. Apple didn’t disclose more specifics on the issues and what exploits may be occurring, as is customary. It will not do so until it completes its investigation of the vulnerabilities, according to the advisory. Customers are urged to update devices as soon as possible to patch the bugs.

Read the full Apple security advisory here: https://support.apple.com/en-us/HT213219

Apple, IOS, MacOS, Zero-Day

More To Explore

Information Security News 3-20-2023

LockBit 3.0 Ransomware: Inside the Cyberthreat That’s Costing Millions Article Link: https://thehackernews.com/2023/03/lockbit-30-ransomware-inside.html BianLian Ransomware Crew Goes 100% Extortion After Free Decryptor Lands Article Link: https://www.theregister.com/2023/03/19/bianlian_ransomware_extortion/

Shane Farmer March 20, 2023

Remediation

Microsoft puts WinRE Vulnerability back in the BitLocker.

Microsoft released a PowerShell script (KB5025175) for CVE-2022-41099 that allows an attacker to utilize WinRE images to bypass BitLocker device encryption on system storage devices.

Tom Froidl March 17, 2023

More Patches for Rotten Apple Zero-Days

Share This Post

More To Explore

Information Security News 3-20-2023

Microsoft puts WinRE Vulnerability back in the BitLocker.

Do You Want to Shore Up Your Defenses?

We're opening our first round of threat hunting engagements to 100 organizations. Sign up or join the wait list here.

Follow Us:

Privacy Policy

© 2023 FRSecure LLC