1 min read

Apple Patches Multiple Vulnerabilities: Get Patching!

Featured Image

The Cupertino Fruit Company rolled out a bevy of software updates dedicated to fixing security flaws currently plaguing its software offerings.

The updates, released on Wednesday, July 20th, 2022, address 37 (at least) flaws currently impacting and everything in between. The updates addressed the following CVEs:

  • CVE-2002-2294 - Memory Corruption, WebRTC
  • CVE-2002-32810 - Apple Neural Engine
  • CVE-2002-32829 - Apple Neural Engine
  • CVE-2002-32840 - Apple Neural Engine
  • CVE-2002 - 32820 - Audio
  • CVE-2002-32821 - GPU Drivers
  • CVE-2002-32802 - ImageIO
  • CVE-2002-26768 - IOMobileFrameBuffer
  • CVE-2002-32813 - Kernel
  • CVE-2002-32815 - Kernel
  • CVE-2002-32792 - WebKit
  • CVE-2002-32844 - Kernel (Pointer Authentication)
  • CVE-2002-32785 - ImageIO (DoS)
  • CVE-2002-32819 - AppleMobileFileIntegrity & System Events (Privilege Escalation)
  • CVE-2002-32826 - AppleMobileFileIntegrity & System Events (Privilege Escalation)

On top of the above mentioned CVEs, the latest version of macOS fixes five security vulnerabilities in the SMB module.

So...when you can (hopefully soon) update to iOS 15.6, iPadOS 15.6, macOS Monterey 12.5 (BigSur 11.6.8, 2022-005 Catalina for older Macs), tvOS 15.6 and watchOS 8.7.

 

Dark Utilities: Off the shelf Command-And-Control Attacks...

Entities offering Cyberattacks-as-a-Service are fairly common and the newest member of the club, called Dark Utilities, is gaining popularity quickly.

Read More

What is a Managed Cybersecurity Services Provider?

We talk a lot about being a Managed Cybersecurity Services Provider and I thought it'd be a good idea to dive into exactly what a Managed...

Read More

Check Out or New Social Engineering Attack Guide!

We've been warning people for YEARS regarding the dangers posed by Social Engineering Attacks. We decided it was time to collect all of that...

Read More