Apple has released iOS 15.0.2 and iPadOS 15.0.2 to fix a zero-day vulnerability that allowed hackers to target unprotected devices. Apple said in a security advisory the vulnerability may have been actively used by malicious actors in various attacks. This update comes shortly after Apple released an update for select iOS, iPadOS and macOS operating systems earlier this month, which BlackCloak covered in previous alerts.
What to Know About the Vulnerability:
The vulnerability is a "critical memory corruption bug," which allows applications to execute commands on vulnerable devices with kernel privileges.
Since kernel privileges allow applications to execute any command on a device, hackers could exploit this flaw to steal data or install additional malware.
What Devices Are Affected?
iPhone 6s and later, iPad Pro (all models), iPad Air 2 and later, iPad 5th generation and later, iPad mini 4 and later, and iPod touch (7th generation)
What To Do About This?
If your device has an update available, update immediately. Here's how:
Mobile Devices: Go to Settings > General > Software Update (Download and Install iOS 15.0.2 or iPadOS 15.0.2)
As always, if you have any questions, please let us know by emailing us at ask@BlackCloak.io. We are happy to help!
