b2b-daily
Home | IT | Mobile

Apple Takes Swift Action to Patch Actively Exploited Security Flaw in Older iPhone and iPad Models

Avatar photo
by Alistair Miller
March 28, 2023
Image Credit: Unsplash
Apple Takes Swift Action to Patch Actively Exploited Security Flaw in Older iPhone and iPad Models

Apple has recently addressed an actively exploited security flaw on older iPhone and iPad models, which could lead to arbitrary code execution. The issue concerns a type confusion bug in the WebKit browser engine that was originally addressed by the company with improved checks as part of updates released on February 13, 2021.

An anonymous researcher is credited with reporting the bug

An anonymous researcher has been credited with reporting the bug. Apple has since issued an advisory, warning of active exploitation of the vulnerability. The advisory states that “processing maliciously crafted web content may lead to arbitrary code execution.”

Details of the exploit are not yet known

At this time, details surrounding the exact nature of the exploitation are not known. Apple has not commented further on the matter, but it is clear that the company is taking the threat very seriously.

Improved checks were added in the February 13, 2023 updates

The vulnerability was originally addressed by the tech giant with improved checks as part of updates released on February 13, 2022. The update is available in versions iOS 15.7.4 and iPadOS 15.7.4 for certain iPhone and iPad models. If you haven’t updated your device yet, it is strongly recommended that you do so.

Active Exploitation

Apple added that they are “aware of a report that this issue may have been actively exploited.” This means that hackers may have been able to exploit the vulnerability to gain access to users’ personal data or other sensitive information. Apple has not provided any information on the extent of the damage caused by the exploit.

Numerous bug fixes have been rolled out

The disclosure comes as Apple rolled out updates with numerous bug fixes. It is important to note that these updates address a variety of issues and are not solely focused on the type confusion bug in the WebKit browser engine.

The security of our devices is becoming increasingly important as more of our lives are lived online. It is important to keep our devices updated with the latest updates and patches to protect against any possible exploits. In light of this news, it’s a good time to remind users to ensure that their devices always run the latest software version.

AppleInformation Security

Explore more

How Is AI Reshaping the Threat of Enterprise Phishing?
June 19, 2026

Dominic Jainy stands at the forefront of the battle against modern cyber threats, bringing a wealth of expertise in machine learning and decentralized technologies to the complex world of information security. As an IT professional who has watched the rapid evolution of artificial intelligence from a laboratory curiosity to a cornerstone of criminal infrastructure, he offers a rare perspective on

Attackers Weaponize Cloud Logging to Bypass Security
June 19, 2026

The sophisticated landscape of modern cybersecurity has reached a point where the very systems designed to provide visibility and protection are being turned against the organizations they serve by malicious actors seeking stealthy entry points. Historically, log files were viewed as the definitive source of truth for forensic investigations, offering an immutable record of every action taken within a digital

Apple Plans Major iPhone Redesign and AI Wearables for 2027
June 19, 2026

The global tech industry stands on the precipice of a seismic shift as Apple prepares to unveil a radical transformation of its flagship smartphone alongside a new category of artificial intelligence-powered wearables. This upcoming development cycle represents more than just an incremental update; it signals a departure from the iterative design philosophy that has characterized the last few generations of

How Does 1Kosmos Secure Workforce Identity on Google Cloud?
June 19, 2026

Dominic Jainy has spent years at the intersection of artificial intelligence and blockchain, developing a keen eye for how emerging technologies reshape the security landscape of modern enterprises. As organizations grapple with the increasing sophistication of digital threats, Dominic’s expertise provides a necessary bridge between technical capability and strategic deployment. His deep understanding of machine learning and decentralized systems allows

Is Trust the New Attack Surface in Modern Cybersecurity?
June 19, 2026

The contemporary digital landscape has shifted so dramatically that the most significant threat to an organization is no longer a flawed line of code, but the deliberate manipulation of systems that are functioning exactly as they were intended to operate by their original creators. This evolution signals a departure from the traditional era of software exploitation, where zero-day vulnerabilities were