Apple fixes serious security flaws targeting iPhone users

Apple has released software updates to fix two security vulnerabilities that might have been actively exploited to hack customers using its mobile software, iOS.

The Cupertino-based tech giant has confirmed that the two zero-day vulnerabilities were fixed, but it's still unknown who is behind the attacks or how many Apple customers were targeted.

It is worth mentioning that one of the bugs was discovered by security researchers at Google's Threat Analysis Group, which investigates government-backed cyberattacks.

This suggested that the attacks might have been launched or coordinated by a nation-state or government agency.

The bug affected Apple's Core Audio component, allowing malicious code to be executed on affected devices through a maliciously crafted media file.

Moreover, the second bug allowed attackers to bypass pointer authentication, a security feature that makes it harder for attackers to inject malicious code into a device's memory.

To fix these security bugs, Apple released software updates for macOS Sequoia (version 15.4.1), iOS (version 18.4.1) for iPhones and iPads, Apple TV, and Vision Pro, the company's mixed-reality headset.

The company has also advised users to update their devices to the latest software versions to ensure their security.