An anonymous Apple researcher found a security flaw in Macs and iPhones that hackers are actively exploiting. The vulnerability goes by CVE-2021-30807, with the researcher stating:
“An application may be able to execute arbitrary code with kernel privileges. Apple is aware of a report that this issue may have been actively exploited.”
The Zero-Day vulnerability critical vulnerability exists in both Mac computers and iPhones which hackers are aware of exploiting.
The vulnerability was allegedly found in the IOMobileFrameBuffer kernel code, an element that helps applications set up and use your device or computer’s display. The security gap allows a hacker to manipulate administrative privileges, giving them access to the kernel which allows them to do just about anything.
Patch right now! Apple users haven’t been notified by Apple yet (oddly enough), but you can update your device manually right now by following the instructions below for each device.
iPhones – Settings > General > Software Update > Download & Install
Macs – Apple Menu (top left) > System Preferences > Software Update > Update Now
Company’s need to take proactive measures to reduce their chances of being victimized by a cyber attack. CyberHoot recommends the taking following steps to prepare for, limit damages, and sometimes avoid cyber attacks:
Start building your robust, defense-in-depth cybersecurity plan today with CyberHoot.
Source: Sophos
Discover and share the latest cybersecurity trends, tips and best practices – alongside new threats to watch out for.
CyberHoot June Newsletter: Stay Informed, Stay Secure Welcome to the June edition of CyberHoot’s newsletter,...
Read more
Stop tricking employees. Start training them. Take Control of Your Security Awareness Training with a Platform...
Read more
A recent discovery by cybersecurity firm Oligo Security has unveiled a series of critical vulnerabilities in...
Read moreGet sharper eyes on human risks, with the positive approach that beats traditional phish testing.
