Apple Release Urgent iPhone Updates But Not For Pegasus Zero-day

BACKGROUND:

It has been reported that Apple has issued a warning about a ream of code-execution vulnerabilities – some of which are remotely exploitable – and experts are emphatically recommending an ASAP update to version 14.7 of iOS and iPadOS. Unfortunately, you aren’t getting a fix for the flaw that makes your iPhones easy prey for Pegasus spyware. 

Experts Comments

July 26, 2021
Hank Schless
Senior Manager, Security Solutions
Lookout

iOS is the prevalent operating system across government bodies for a number of reasons. iOS updates are pushed to every Apple device user at the same time. Apple is able to do this because they’re the only company that manufactures devices that run their own operating systems. This gives them an advantage over Android because there are so many device manufacturers that can build devices that run Android OS. For that reason, there’s significant lag time in an update being released and every

.....Read More

iOS is the prevalent operating system across government bodies for a number of reasons. iOS updates are pushed to every Apple device user at the same time. Apple is able to do this because they’re the only company that manufactures devices that run their own operating systems. This gives them an advantage over Android because there are so many device manufacturers that can build devices that run Android OS. For that reason, there’s significant lag time in an update being released and every Android device receiving it. iOS is also more locked down in nature than Android, which is built on Linux and other open-source software. 

Software vulnerabilities are an inevitability with any mobile operating system or application. Every organization, not just those in government, needs visibility into what these vulnerabilities are and where they’re present across their mobile fleet. Apple has been quick to release patches when high-profile vulnerabilities are reported to be exploited in the wild, but it’s on the end user to actually install those updates. All organizations should have a mobile vulnerability and patch management tool in place. It helps them visualize where these risks are and enforce policies that require employees to update their devices to the latest versions if they want to access corporate resources.

  Read Less

Submit Your Expert Comments

What do you think of the topic? Do you agree with expert(s) or share your expert opinion below.
Be part of our growing Information Security Expert Community (1000+), please register here.

Write Your Expert Comments *
Your Registered Email *
Notification Email (If different from your registered email)
* By using this form you agree with the storage and handling of your data by this web site.