One day after the release of the new operating systems, it becomes clear – the updates are particularly important this time.
Apple describes several security holes that were fixed with iOS 12.2 and macOS 10.14.4. The explosive thing is that both systems were affected by serious bugs. The errors could enable hackers to smuggle in various malware - thus it would be possible to activate the iPhone microphone without the affected person noticing. Anyone using a version older than iOS 12.2 or macOS 10.14.4 can catch said malware via manipulated websites.
Apps can also be dangerous
The Cybersecurity and Infrastructure Security Agency (CISA) also issued a warning on this topic. In addition to infected websites, apps can also become a problem and take over the iPhone or iPad.
The whole thing was made possible by a bug in ReplayKit and WebKit. According to Apple, around 50 loopholes have been eliminated with iOS 12.2 and macOS 10.14.4.
Mac keychain bug fixed
At the beginning of February, security researcher Linus Henze found a gap in Apple's keychain under macOS 10.14.3 and made it public on YouTube. In the video, Henze demonstrated how a tool could easily read the entire password collection. The prerequisite: The tool must be running on the respective Mac. The program can be hidden in an app and does not even need access rights to the keychain itself - it strikes when the user unlocks the Mac keychain themselves. According to Apple, this problem is now history. Due to the severity of the bugs in question, every user will be advised to update to iOS 12.2 and macOS 10.14.4 recommended promptly.
