Myself, along with almost half of the UK, own an iPhone and we've been told to take action.
Apple has issued a warning to worldwide users of an 'extremely sophisticated attack' which is exploiting a major security flaw.
The vulnerability has been identified within WebKit, a browser engine used in Safari and other internet browsers created for Apple devices, including iPhones and iPads.
Hackers appear to be taking advantage of the security flaw to create malicious websites that could give them access to other personal applications, such as banking apps and messages.
Advert
Those who own the iPhone XS model, which came out in 2018, onwards, have now been told to update to iOS 18.3.2 to avoid facing this security risk.
Apple said: “Maliciously crafted web content may be able to break out of Web Content sandbox.
“This is a supplementary fix for an attack that was blocked in iOS 17.2.
“(Apple is aware of a report that this issue may have been exploited in an extremely sophisticated attack against specific targeted individuals on versions of iOS before iOS 17.2.).
Advert
“An out-of-bounds write issue was addressed with improved checks to prevent unauthorised actions.”
How to update to iOS 18.3.2
• Unlock your iPhone
Advert
• Go to 'Settings'
• Select 'General'
• Then tap on Software Update'
• Click 'Install'
Advert
If you have 'Automatic Updates' on, then the latest version of software should already be updated on the device.
Apple pulls data protection tool from UK
Last month, the tech giant announced that it was removing Advanced Data Protection (ADP), its highest level of data protection, from Apple users in the UK.
It follows on from the government's request to access fully encrypted files from Apple users, under the Investigatory Powers Act 2016.
Advert
Some online safety charities, as well as police and security services, have previously warned of the dangers of end-to-end encrypted services, arguing that they allow offenders such as terrorists and child abusers to hide more easily.
However, Apple said: “Apple can no longer offer Advanced Data Protection (ADP) in the United Kingdom to new users and current UK users will eventually need to disable this security feature.
“ADP protects iCloud data with end-to-end encryption, which means the data can only be decrypted by the user who owns it, and only on their trusted devices.
“We are gravely disappointed that the protections provided by ADP will not be available to our customers in the UK given the continuing rise of data breaches and other threats to customer privacy.
“Enhancing the security of cloud storage with end-to-end encryption is more urgent than ever before. Apple remains committed to offering our users the highest level of security for their personal data and are hopeful that we will be able to do so in the future in the United Kingdom.
“As we have said many times before, we have never built a backdoor or master key to any of our products or services and we never will.”
Topics: Apple, Technology, iPhone, Phones
Anish Vij