Apple and Google put out a bunch of new security fixes after finding a “indiscriminate” hacking operation that stole data from iPhones all over the world.
The operation found weaknesses that were still being used against both businesses, so they had to move quickly. First, Google released updates to fix a number of security holes in its Chrome browser, one of which was already being used by hackers before a fix could be put in place.
Not long after, Apple sent out security fixes to all of its products. They said that some of the attacks were “extremely sophisticated” and focused on a specific target. Neither company said how many people were affected, but security experts said that the evidence pointed to government-backed hacking operations instead of normal theft.
Google Fixes Vulnerability in Chrome That Hackers Were Using
On Wednesday, Google updated the Chrome browser to fix a number of security issues. One of the flaws was known to be actively attacked in the wild, which means that attackers were already using it before there was a fix.
At first, Google didn’t say much. But the company changed its warning later to show that the weakness was found by Apple’s security tech team and Google’s Threat Analysis Group. The group is well-known for following those who government hackers and commercial spyware sellers follow. Its members said that the people they follow might be related to state-sponsored or private spying operations.
Apple Sends Out Security Updates Everywhere.
Not long before, Apple put out security patches for many different products, such as
- iPads and iPhones
- Macs
- Safari web browser
- Apple Watch
- Apple TV
- Vision Pro
Apple said it had fixed two security holes in a warning for iPhones and iPads. It also said it “knew of a report” that these holes “may have been exploited in an extremely sophisticated attack against specific targeted individuals” using devices with versions of iOS older than 26.
What Apple’s Warning Actually Means
Apple’s language is usually used when the company thinks that zero-day vulnerabilities have been exploited. Zero-days are bugs that the people who make the software don’t know about when an attack happens. Because of this, they can be very risky.
In the past, these kinds of acts have been linked to:
- Hacking groups that are supported by the government
- Spyware companies for hire
- Close monitoring of journalists, activists, and those who oppose the government
Similar efforts have also been linked to other businesses like Paragon Solutions and NSO Group
Last Thoughts
The changes from Apple and Google show that weaknesses in browsers and operating systems are a big target for high-end spying. It’s not clear how many users are affected, but the feature phones have zero-day flaws, and top-notch security teams say that more advanced and better-funded attackers are behind the hacks. “Customers can also be victims of the kind of attack that puts their private personal information at risk.” We strongly suggest that users install patches on all of their devices as soon as they are released. This makes it much harder for attackers to exploit vulnerabilities before others learn about them.
A versatile writer mainly works on trending news, daily updates from politics, business, crime, current affairs and entertainment.
