“iPhone, iPad and Mac users are being urged to download the latest version of iOS and Mac OS X in order to protect themselves from a vulnerability that could allow malicious code to be executed on their device simply by downloading a dodgy image file,” Steve McCaskill reports for TechWeek Europe.
“In total iOS 9.3.3 fixes 40 vulnerabilities and Mac OS X patches 63, but it is CVE-2016-4631, discovered by researchers at Cisco’s Talos security division, that is attracting the most attention,” McCaskill reports. “The flaw relates to how Apple’s Image I/O API handles TIFF files – a standard created in the 1980s for scanned images.”
McCaskill reports, “Because images can be sent across the web without raising too much suspicion, the scope for exploitation is significant, especially since all [but the curent] versions of Mac OS and iOS are believed to be vulnerable.”
Read more in the full article here.
MacDailyNews Take: If you haven’t updated to the current versions of iOS (9.3.3) and OS X (10.11.6), do so ASAP.
Who is responsible for security and auditing at Apple these days?
Cupertino is starting to look a lot like Redmond.
Why? Because they update??
Enough with the hyperbole! Gawd! The levels of vulnerability in Redmond crap are many powers of ten higher.
DavGreg, according to the article, all but the current versions of Mac OS and iOS are believed to be vulnerable. That means that this TIFF I/O vulnerability goes way back and no one found it until recently.
I am not excusing Apple for all of its flaws. It certainly has room for improvement in many areas. But you chose the wrong issue when you attempted to conflate Apple with Microsoft. Really weak…
I wish there were enough hard disc space to update with. That would be nice.
There are going to quickly be exploits for some of the security holes in the previous iterative versions of macOS, no doubt. If you’re using anything pre-Mavericks (patched 10.9.5), BEWARE!
Keep up with Apple upgrades!
And
Always make backups!
And
Don’t fall for phishing email or Trojans.
After the reports of bricked iMacs (on this site) I updated via the combo update and there were no problems.
Regarding Sierra I always wait until the third version of a new OS. Yes, it leaves me vulnerable but most of the bugs are weeded out by that stage. I base this rule of thumb on too many bitter experiences.
After updating to
iOS 9.3.3.
And using my touch for several days.
My iPod touch would not turn on. It was fully charged. So I plug it in and let it charge for a while.
I then did a hard start
(holding both switches down until the Apple turned on)
It finally turned on. Try this if you’re having any problems.
Mac OS 10.11.6 gave me the spinning beach ball on a 2014 rMBP and a 2011 MBP, stay away until Apple gets it head out of its ass and releases a real working update. I’m happy for all you folks that it work fine, but for lots of us its MS level crap. Thank god for Carbon Copy Cloner and years of best practice , back-up before update. I like Mac OS but find it increasingly annoying they don’t care about QC, just release some POS and see how many scream, then maybe fix it if they have to.