Apple has released iOS 18.3.2 and macOS Sequoia 15.3.2 to address a critical security vulnerability. The vulnerability affects WebKit, the engine behind Safari, and could allow attackers to use malicious web content to penetrate the system. What's particularly explosive is that, according to Apple, this vulnerability has already been exploited in targeted attacks. Therefore, this update is not just a recommendation, but a must-have.
Cyberattacks are a constant threat, and often a single security flaw is enough to allow access to personal data or entire systems. In this case, Apple has made improvements to further seal off a previously addressed WebKit vulnerability. Anyone who wants optimal protection for their iPhone, iPad, or Mac should install the latest software version as soon as possible.
The security gap in detail
The vulnerability is in WebKit, the rendering engine used in Safari and many other Apple apps. According to Apple's official security advisories, specially crafted web content can break out of the WebKit sandbox. This means that an attacker could potentially perform unauthorized actions on a device via a website. Part of the problem was already fixed in iOS 17.2, but apparently that wasn't enough. With iOS 18.3.2 and macOS Sequoia 15.3.2, Apple has implemented additional safeguards to permanently eliminate the risk (via support document).
Attacks are already known
What's particularly alarming is that Apple has confirmed reports of targeted attacks. While no details were provided about the individuals or organizations affected, the phrase "an extremely sophisticated attack against specific targets" suggests that these are highly sophisticated attacks. While not every user is directly affected, experience shows that once security vulnerabilities are discovered, they are often quickly exploited in larger waves of attacks. Closing this vulnerability is therefore an important precautionary measure for all users.
Which devices are affected?
The update affects several Apple devices that use WebKit:
- iPhones with iOS 18
- iPads with iPadOS 18
- Macs with macOS Sequoia 15
- Apple Vision Pro with visionOS 2
Anyone using one of these devices should check immediately whether the update is available for installation.
How to install iOS 18.3.2, macOS Sequoia 15.3.2, and more.
The update is quick and should not be postponed.
This is how the update works on iPhone and iPad:
- Open the settings
- Go to “General” and then “Software Update”
- Once the update appears, tap “Download and install”
- Follow the instructions on the screen
How to update a Mac:
- Click on the Apple menu
- Select “System Settings”
- Go to “Software Update”
- Once the update is available, click “Update Now”
How to update your Apple Vision Pro
- Open the settings
- Go to “General” and then “Software Update”
- Once the update appears, tap “Download and install”
- Follow the instructions on the screen
iOS 18.3.2, macOS Sequoia 15.3.2 & Co.: Important protective measure
iOS 18.3.2, macOS Sequoia 15.3.2, and others are security-relevant updates that address an actively exploited WebKit vulnerability. Since targeted attacks are already known, the update shouldn't be postponed. Anyone who wants to protect their device and their data should update now. (Photo by Blan-k / Bigstockphoto)
- iOS 18.3.2 & more: Apple improves stability & security
- iOS 19 brings a new design – what exactly changes?
- Siri update postponed – is security the reason?
