#Apple security update closes spyware flaw pdf#
The Citizen Lab disclosed the vulnerability and code to Apple, which has assigned the FORCEDENTRY vulnerability CVE-2021-30860 and describes the vulnerability as “processing a maliciously crafted PDF may lead to arbitrary code execution.” We believe that FORCEDENTRY has been in use since at least February 2021. We determined that the mercenary spyware company NSO Group used the vulnerability to remotely exploit and infect the latest Apple devices with the Pegasus spyware. The exploit, which we call FORCEDENTRY, targets Apple’s image rendering library, and was effective against Apple iOS, MacOS and WatchOS devices. While analyzing the phone of a Saudi activist infected with NSO Group’s Pegasus spyware, we discovered a zero-day zero-click exploit against iMessage. These capabilities can fetch millions of dollars on the underground market for hacking tools.
#Apple security update closes spyware flaw full#
But NSO Group’s zero-click capability gives the victim no such prompt, and enables full access to a person’s digital life. In the past, victims only learned their devices were infected by spyware after receiving a suspicious link texted to their phone or email. “This spyware can do everything an iPhone user can do on their device and more,” said John Scott-Railton, a senior researcher at Citizen Lab, who teamed up with Bill Marczak, a senior research fellow at Citizen Lab, on the finding. Using the zero-click infection method, Pegasus can turn on a user’s camera and microphone, record their messages, texts, emails, calls - even those sent via encrypted messaging and phone apps like Signal - and send it back to NSO’s clients at governments around the world. Known as a “zero click remote exploit,” it is considered the Holy Grail of surveillance because it allows governments, mercenaries and criminals to secretly break into a victim’s device without tipping them off. The spyware, called Pegasus, used a novel method to invisibly infect an Apple device without the victim’s knowledge for as long as six months. Researchers at Citizen Lab found that NSO Group, an Israeli spyware company, had infected Apple products without so much as a click. This is the Holy Grail of surveillance capabilities and you are vulnerable until you update.Īpple Issues Emergency Security Updates to Close a Spyware Flaw New zero-click NSO Group #Pegasus spyware has been infecting iPhones, Macs, Watches. WordPress Fixed 16 Vulnerabilities with Security Update 6.0.3Nicole NEWS: Do you own an Apple product? UPDATE IT NOW. Moreover, WordPress websites which support automatic background updates will be automatically patched. The fourth severe issue is a CSRF bug that can be used by an unauthenticated attacker to trigger a trackback on behalf of a legitimate user, but social engineering is required for successful exploitation.
Exploitation requires user interaction and creating a payload is not easy, but as the attacker doesn't need to be authenticated, this could be the most exploitable vulnerability.Īnother vulnerability with high severity is a SQL injection that could be exploited by a third-party plugin or theme however, the WordPress core is not affected. The second high-severity flaw is a reflected XSS which can be exploited for arbitrary code execution by an unauthenticated attacker through a specially crafted search query in the media library. When the post is accessed, the code will get executed. The first high-severity flaw is stored XSS, which can be exploited by a user who can submit posts to a website through email to inject malicious JavaScript code into posts. The company warned that even though these vulnerabilities are not likely to be seen as mass exploits, many of them could offer a way for skilled attackers to exploit high-value sites using targeted attacks. Four vulnerabilities have a 'high severity’ rating, and the remaining have 'medium' or 'low' severity. Defiant, a WordPress Security company, has shared a description of each vulnerability. WordPress 6.0.3 patches 16 vulnerabilities, of which nine are stored and reflect cross-site scripting (XSS) vulnerabilities, along with open redirect, data exposure, cross-site request forgery (CSRF), and SQL injection flaws.
0 kommentar(er)
