IOS 17 is right around the corner, and let’s just say that Apple is still holding on to the iOS 16 update, which is actually a good thing. Currently when we speak of iOS 16 software update, we might want to take a look at iOS 16.6.1 update which we recently released. Apple has still some work to do with this line of update. This update is beneficial for the users whose devices are soon going to lose the software update support as soon as iOS 17 releases. Now let’s talk about iOS 16.6.1 features and what it has instore for us.
IOS 16.6.1 looks like it contains some critical security fixes that needs to be installed right away on its compatible devices. I recommend all the iPhone iPad users to get this update for their own benefit. Talking about what it has in store for us in terms of features, well lets just say Apple has patched vulnerabilities in two different components of iOS – the ImageIO framework and the Wallet app. Exploits targeting these flaws were found to be actively circulating in the wild.
There is a flaw in the way ImageIO handles image files on iPhones and iPads. ImageIO is the system that opens and displays image files. By creating a specially crafted malicious image, a hacker could take over an iPhone or iPad. Just visiting a website or opening a message with the bad image file could let the hacker run their own code on the device. This could let them take control of the device.
This ImageIO bug was originally discovered by researchers at The Citizen Lab, a group that investigates spyware. They found that this flaw was being used as part of an exploit chain to silently install the notorious Pegasus spyware. (Pegasus is a powerful surveillance tool built by the NSO Group that can completely take over a phone without the owner’s knowledge.)
The Citizen Lab reported that they could build a full exploit using the ImageIO flaw that successfully infected fully updated iPhones even on the latest iOS version. This really highlights why it’s so important to promptly install Apple’s security updates.
The second flaw resided in iOS’s Wallet app and could also lead to malicious code execution. Simply opening a crafted attachment in Wallet could trigger the bug. While the full technical aspects haven’t been disclosed, both weaknesses are considered highly dangerous.
Researchers praise Apple’s quick response time in patching these vulnerabilities. However, the extensive iOS 16 update that arrived earlier this month contained mostly new features. It did not really improve security protections within the OS. This is why follow-up patches like 16.6.1 are so improtant.
Apple has acknowledged Citizen Lab for their help in identifying the ImageIO vulnerability. The researchers stated they could fully hack an updated iPhone, demonstrating that users should never delay installing Apple’s security fixes.
Although there are no other changes and features other than the security in iOS 16.6.1, updating is highly recommended. Users can find the software update section in Settings and check for the latest version. Staying current with patches helps defend against zero-day exploits like these that attack unfixed flaws.
I know other than these two things there are no new features, but these are pretty important one. So pick up your device and install it now!
Until next time, with another topic. Till then, Toodles.