BACKGROUND
Apple has released security updates for iPhones, iPads, Apple Watches and Mac computers to address vulnerabilities (CVE-2021-30860 and CVE-2021-30858) that were being exploited by Pegasus spyware.
The bug allowed for a "zero-click" install of the spyware which is capable of stealing data, passwords, and activating a phone's microphone or camera.
IMPACT
May lead to arbitrary code execution on affected products.
SYSTEM AFFECTED
Apple devices running iOS, macOS and watchOS.
RECOMMENDATIONS
- Given the severity of the exploit, users are advised to update their Apple devices to the latest version of iOS, macOS and watchOS.
- It is also advisable for users to turn on automatic updates for your device.
Settings > General > Software Updates > Enable Automatic Updates
- Backup your device before installing an update.
- Install antivirus and update it automatically