The Independent's journalism is supported by our readers. When you purchase through links on our site, we may earn commission.
Apple releases urgent iPhone update to millions of users
Critical security flaw with iOS 16 exposes users’ photos and audio recordings to hackers
Your support helps us to tell the story
From reproductive rights to climate change to Big Tech, The Independent is on the ground when the story is developing. Whether it's investigating the financials of Elon Musk's pro-Trump PAC or producing our latest documentary, 'The A Word', which shines a light on the American women fighting for reproductive rights, we know how important it is to parse out the facts from the messaging.
At such a critical moment in US history, we need reporters on the ground. Your donation allows us to keep sending journalists to speak to both sides of the story.
The Independent is trusted by Americans across the entire political spectrum. And unlike many other quality news outlets, we choose not to lock Americans out of our reporting and analysis with paywalls. We believe quality journalism should be available to everyone, paid for by those who can afford it.
Your support makes all the difference.Apple has issued an urgent update for millions of iPhone users after two critical security flaws were discovered.
The tech giant warned that the latest version of iOS 16, called iOS 16.5.1, was required in order to protect against two vulnerabilities that hackers already know how to exploit.
One of the bugs involves a “malicious attachment” sent through iMessage, that allows cyber criminals to gain access to an iPhone’s audio recordings, photos and location data.
Security researchers said the security flaw, dubbed TriangleDB, has already been exploited through a campaign called Operation Triangulation, which targeted employees of the cyber firm Kaspersky.
“The deployment of the spyware is completely hidden and requires no action from the user,” Kaspersky wrote in a blog post earlier this month.
“The spyware then quietly transmits private user information to remote servers: microphone recordings, photos from instant messengers, geolocation, and data about a number of other activities of the owner of the infected device.”
The second bug affected Apple’s browser engine WebKit, which leaves users exposed to something known as arbitrary code execution. This could result in malicious third parties stealing data or hacking a device.
Both exploits could also impact iPad and Mac users, with Apple issuing security fixes for all of these devices.
Apple also released a software update for Apple Watch, which brings new features to its smartwatch.
The Cupertino company unveiled its latest mobile operating system iOS 17 earlier this month, though it is not yet widely available.
A full public release date of iOS 17 will take place when the new iPhone is announced in September.
The iOS 16 update covers more than a decade’s worth of devices, going back to the iPhone 6s and Apple Watch Series 3.
“This update provides important security fixes and is recommended for all users,” Apple wrote in the release notes for iOS 16.5.1.
Apple Watch, iPhone, iPad and Mac users can update their devices by going to the Settings app and selecting ‘General’ > ‘Software update’, and then following the instructions.
Join our commenting forum
Join thought-provoking conversations, follow other Independent readers and see their replies
Comments