Apple has launched an important software update for the iPhone and iPad that closes a security vulnerability that was actively exploited in the wild.
The company has released iOS and iPadOS 14.4.2, which it says removes a problem that enabled a bad actor to engage in cross-site scripting. The implication is that a remotely harvested information can be found remotely from the site you open on your Apple device.
We often see Apple post security updates for vulnerabilities, but it is often seen that those vulnerabilities have been exploited in the wild. In this example, Apple states that it knows of a person who has used the vulnerability, which is fixed through better management of the object life. ‘
But in a post Apple’s Support Site (Viewed by MacRumors), The company writes: “Impact: Processing maliciously crafted web content can lead to universal cross-site scripting. Apple is aware of a report that the issue may be actively used. “
Security was improved just weeks after iOS / iPadOS 14.4.1. Also talked about: “Processing maliciously crafted web content can lead to arbitrary code execution.” It today updates the second security fix for the iOS 14.4 update early in the new year.
Related: Best iPhone
This is probably an update that you should not wait too long to download. You can do this by going to Settings> General> Software Update and following the instructions. As always, it is a decent idea to have a recent back-up in your locker before proceeding with the update.
iOS 14.4 arrived in January and introduced new Bluetooth features, allowing users to categorize device types such as speakers or headphones. The iPhone camera app is also capable of capturing small QR codes, while there is also a bug fix for the keyboard issue, which prevents the correct language appearing in the messaging app.