Apple has released an update for iPhones, iPads and Watches to address a security vulnerability under active hacker attack.
The security update arrives as iOS 14.4.2 and iPadOS 14.4.2, which also covers a patch for older devices like iOS 12.5.2. watchOS also updates to 7.3.3.
Apple said the vulnerability, discovered by security researchers at Google’s Project Zero, may have been “actively exploited” by hackers. The bug is found in WebKit, the navigation engine that powers the Safari browser on all Apple devices.
It is not known who is actively exploiting the vulnerabilities or who may have been the victim. Apple did not say whether the attack was aimed at a small subset of users or whether it was a broader attack. It is the third time (by our accounts) that Apple has released a security-only update this year to correct flaws under active attack. Earlier this month, the company released patches for similar vulnerabilities in WebKit.
Update today.