I am once again asking you to update your Apple devices
Category
Vulnerabilities
Risk Level
Apple released a critical security update for iOS, iPadOS and MacOS this week to patch multiple zero-day vulnerabilities. If you read no further, take 10 minutes and update all of your Apple devices today!
“A zero what now?”
You may remember from another ACT post that vulnerabilities are holes in your electronic devices’ code that when left unpatched, can allow hackers to use them to their advantage; like an open back door on your house.
Often times, companies will identify these holes and fix them before a hacker can ever use them. If you keep your devices updated, you reduce the risk of this ever causing you a problem.
But a zero-day vulnerability is one that companies don’t know about, and hackers have discovered first. They are rare, but they do happen. Apple says these vulnerabilities may have already been exploited.
If you’re keeping count, 30 of the zero-day vulnerabilities in 2022 have been related to Apple, which means you need to stay on top of your updates.
“So what do I do?”
In short, update your devices.
On your iPhone/iPad: Go to Settings > General > Software Update and download and install the latest updates. Make sure it says 15.6.1
While you’re on that screen and waiting for your download to finish, click on Automatic Updates and turn on the switches for Download iOS/iPadOS Updates and Install iOS/iPadOS Updates so that your device will stay up to date automatically.
Ready to be a cybersecurity champion? Go to Settings > App Store and turn on the switch for App Updates so that all your apps stay up to date automatically too.
On your Mac: Go to System Preferences > Software Update and download and install the latest updates. Make sure it says 12.5.1
While you’re on that screen and waiting for you download to finish, check the check box for Automatically keep my Mac up to date
Ready to be a cybersecurity champion? Click on Advanced… and check all of the check boxes so that your Mac and all of its apps stay up to date automatically too.
“What’s the update doing?”
This update is meant to address critical bugs in the OS’ kernel (basically the part of your device that controls everything) and WebKit that could allow a hacker to run malicious code on your device. The notes also warn that the bugs may have actively been exploited (which isn’t a good thing).
“Got it. Is there a better way for my organization to stay on top of this?”
There is! If your organization is trying to understand where you’re missing updates and are vulnerable, whether it’s iPhones or a server, let’s talk about our Vulnerability Assessment today. We’ll help you identify where things are at risk, and set you up for success moving into the future!
Ready to talk with an expert? Click the button below