Apple Releases iOS 9.3.5 With Fix for Three Critical Vulnerabilities Exploited by Hacking Group

by

Apple today released an iOS 9.3.5 update for the iOS 9 operating system, almost a month after releasing iOS 9.3.4 and a few weeks before we expect to see the public release of iOS 10, currently in beta testing.

iOS 9.3.5 is available immediately to all devices running iOS 9 via an over-the-air update.

appleios93
iOS 9.3.5 is likely to be the last update to the iOS 9 operating system, introducing final bug fixes, security improvements, and performance optimizations before iOS 9 is retired in favor of iOS 10. iOS 9.3.4, the update prior to iOS 9.3.5, included a critical security fix patching the Pangu iOS 9.3.3 jailbreak exploit. iOS 9.3.5 features major security fixes for three zero-day exploits and should be downloaded by all iOS users right away.

According to The New York Times the three security vulnerabilities patched in the update were exploited by surveillance software created by NSO Group to jailbreak an iPhone and intercept communications.

In an overview of the exploits, security firm Lookout says NSO Group's spyware software, nicknamed "Pegasus," was highly sophisticated, installing itself through a link sent via a text message.

The exploit was initially discovered on August 11 after human rights defender Ahmed Mansoor received a suspicious link and sent it to Citizen Lab and Lookout. Had Mansoor clicked the link, it would have jailbroken his iPhone and installed "sophisticated malware" able to intercept phone calls, text messages, FaceTime calls, email, and more.

Pegasus is the most advanced attack Lookout has seen because it is customizable, can track a range of things, and uses strong encryption to avoid detection. Lookout believes "Pegasus" had been in the wild for quite some time before it was discovered, with some evidence dating back to iOS 7.

Citizen Lab and Lookout informed Apple of the vulnerabilities and the company worked quickly to implement a fix, patching the exploits in just 10 days.

Top Rated Comments

Michael Goff Avatar
Michael Goff
76 months ago
Is it odd that Apple would release so many updates to iOS over a year? We're at iOS 9.3.5 now.

Think back to iOS 7, we got to 7.1.2.
I like the new Apple that doesn't just sit and hope. I like it that they seem to be pushing forward with more fixes.
Score: 51 Votes (Like | Disagree)
639051 Avatar
639051
76 months ago
Hmmm. Really? "pushing forward with more fixes"? What about push forward with a release that doesn't require fixes when released. Isn't this like "a ship with a hole in the bottom, leaking water, and [the] job is to get the ship pointed in the right direction"?
Going to throw this out there. Since it is obviously so simple of a task in the minds of many here at Macrumors, why don't you all band together and DO IT YOURSELF? What a novel concept, right? Since it obviously requires just rolling up the sleeves and digging in it should be doable by anyone!

Seriously, you can put up or shut up as far as I am concerned. Reducing the an extremely complex issue to "they should just do it!!!!" is asinine.
Score: 40 Votes (Like | Disagree)
cale508 Avatar
cale508
76 months ago
Not surprising, they are leaving iOS 9 as secured as possible for devices not making it into iOS 10.
Score: 22 Votes (Like | Disagree)
639051 Avatar
639051
76 months ago
What I'm saying is, maybe the releases are too premature before being made publicly available.
What I am saying is, you have no clue how anything in software development works if you expect a perfect world like you seem to imagine.
Score: 19 Votes (Like | Disagree)
Michael Goff Avatar
Michael Goff
76 months ago
that ain't my job buddy - but I did pay Apple $1,400 for an iPP and $800 for an iPhone to supposedly avoid this.
If you paid Apple to avoid updates, you screwed up. Go get a Lenovo Android phone. You won't have to worry about OS updates on that device.
Score: 16 Votes (Like | Disagree)
urtules Avatar
urtules
76 months ago
I wonder if I can get these patches while jailbroken on 9.3.3.
Why do even bother. The fact that your device is jailbroken is already main security problem.
Score: 15 Votes (Like | Disagree)
Read All Comments

Popular Stories

macbook air m2

Exclusive: Apple Plans to Launch MacBook Air With M2 Chip on July 15

Wednesday June 29, 2022 5:23 pm PDT by
The redesigned MacBook Air with the all-new M2 Apple silicon chip will be available for customers starting Friday, July 15, MacRumors has learned from a retail source. The new MacBook Air was announced and previewed during WWDC earlier this month, with Apple stating availability will begin in July. The MacBook Air features a redesigned body that is thinner and lighter than the previous...
Read Full Article306 comments
original iphone 2007

15 Years Ago Today, the iPhone Went On Sale

Wednesday June 29, 2022 4:43 am PDT by
Fifteen years ago to this day, the iPhone, the revolutionary device presented to the world by the late Steve Jobs, officially went on sale. The first iPhone was announced by Steve Jobs on January 9, 2007, and went on sale on June 29, 2007. "An iPod, a phone, an internet mobile communicator... these are not three separate devices," Jobs famously said. "Today, Apple is going to reinvent the...
Read Full Article240 comments
maxresdefault

Video Comparison: M2 MacBook Pro vs. M1 MacBook Pro

Tuesday June 28, 2022 2:45 pm PDT by
Apple last week launched an updated version of the 13-inch MacBook Pro, and it is the first Mac that is equipped with an updated M2 chip. As it's using a brand new chip, we thought we'd pick up the M2 MacBook Pro and compare it to the prior-generation M1 MacBook Pro to see just what's new. Subscribe to the MacRumors YouTube channel for more videos. For the video comparison, we're using the...
Read Full Article78 comments
iPhone vs Galaxy Larger

Apple Executive Says Samsung Copied the iPhone and Simply 'Put a Bigger Screen Around It'

Tuesday June 28, 2022 8:59 am PDT by
The Wall Street Journal's Joanna Stern today shared a new documentary about the evolution of the iPhone ahead of the 15th anniversary of the device launching on June 29, 2007. The documentary includes an interview with Apple's marketing chief Greg Joswiak, iPhone co-creator Tony Fadell, and a family of iPhone users. One segment of the interview reflects on Android smartphones gaining larger...
Read Full Article115 comments
iPhone 11 Pro vs iPhone 14 Pro

iPhone 11 Pro vs. 14 Pro: New Features to Expect if You've Waited to Upgrade

Monday June 27, 2022 11:22 am PDT by
With many customers choosing to upgrade their iPhone every two or three years nowadays, there are lots of iPhone 11 Pro users who might be interested in upgrading to the iPhone 14 Pro later this year. Those people are in for a treat, as three years of iPhone generations equals a long list of new features and changes to look forward to. Below, we've put together a list of new features and...
Read Full Article163 comments
Mac Studio IO

Apple Begins Selling Refurbished Mac Studio Models

Thursday June 30, 2022 7:42 pm PDT by
Apple today began selling refurbished Mac Studio models for the first time in the United States, Canada, and select European countries, such as Belgium, Germany, Ireland, Spain, Switzerland, the Netherlands, and the United Kingdom. In the United States, two refurbished Mac Studio configurations are currently available, including one with the M1 Max chip (10-core CPU and 24-core GPU) for...
Read Full Article87 comments
rootbug

Major macOS High Sierra Bug Allows Full Admin Access Without Password - How to Fix [Updated]

Tuesday November 28, 2017 12:33 pm PST by
There appears to be a serious bug in macOS High Sierra that enables the root superuser on a Mac with a blank password and no security check. The bug, discovered by developer Lemi Ergin, lets anyone log into an admin account using the username "root" with no password. This works when attempting to access an administrator's account on an unlocked Mac, and it also provides access at the login...
Read Full Article684 comments