(www.securityweek.com)

265 points fortran77 | 1 comments | 20 Nov 24 00:26 UTC | HN request time: 0.21s | source

Show context

TekMol ◴[20 Nov 24 07:13 UTC] No.42191458[source]▶

The article sounds like it also applies to iOS

    The company urged users across the Apple
    ecosystem to apply the urgent iOS 18.1.1,
    macOS Sequoia 15.1.1 and the older iOS 17.7.2.

And that it is web based

    maliciously crafted web content may lead
    to arbitrary code execution

Has this happened before? That iPhones had a security hole that could be exploited over the web?

replies(5): >>42191532 #>>42191533 #>>42191570 #>>42191597 #>>42192845 #

e28eta ◴[20 Nov 24 07:25 UTC] No.42191532[source]▶

>>42191458 #

Absolutely. I don’t follow the scene, but early in the iphone’s product life I distinctly remember a web-based jailbreak, where you loaded a page and then you could ‘slide to jailbreak’. I don’t know if user action was strictly required, or if it was a UX thing.

replies(1): >>42192094 #

TekMol ◴[20 Nov 24 09:16 UTC] No.42192094[source]▶

>>42191532 #

Shouldn't that lead to a massive amount of iPhones being broken into?

If not, why?

If so, what happened to all those phones?

I never hear stories like "My iPhone was broken into and this happened: ..."

replies(4): >>42192219 #>>42192481 #>>42192531 #>>42192745 #

1. throwaway290 ◴[20 Nov 24 10:27 UTC] No.42192531[source]▶

>>42192094 #

How are you sure your phone was not broken into? Do you think some big alert magically appears?

↑

Apple Confirms Zero-Day Attacks Hitting macOS Systems