PSA: Make Sure to Update, iOS 16.5, iPadOS 16.5, and macOS 13.4 Address These Three Actively Exploited Vulnerabilities
The iOS 16.5, iPadOS 16.5, and macOS 13.4 updates that Apple released today address vulnerabilities that are known to have been exploited by bad actors, which means it is important to update to the new operating systems as soon as you can.
According to Apple's security support documents for iOS and macOS, the updates fix three WebKit vulnerabilities. Two of these issues were addressed in the prior iOS 16.4.1 and macOS 13.3.1 Rapid Security Response updates and are not an issue if you updated, but a third vulnerability is still active until you install the latest updates.
The WebKit security flaw could allow an attacker to break out of the Web Content sandbox, an issue that Apple fixed with improved bounds checks. Apple says that it is aware of a report that this issue may have been actively exploited.
The other two WebKit vulnerabilities were related to processing maliciously crafted web content that could allow for the disclosure of sensitive information or arbitrary code execution.
Popular Stories
Apple today released a new Pride Edition Sport Loop for the Apple Watch. The band features a rainbow design with 11 colors of woven nylon yarns.
The new Pride Edition Sport Loop is available to order now on Apple.com and in the Apple Store app in 40mm, 42mm, and 46mm sizes, and it will be available at Apple Store locations starting later this week. In the U.S., the band costs $49.
There...
Instagram will remove end-to-end encryption for direct messages between users from May 8, 2026. When the date comes around, Meta will potentially be able to see the contents of all messages between users on the social media platform.
Encrypting messages has been an optional feature in Instagram since 2023, but in March of this year the social media platform quietly updated a help page to say ...
iOS 26.5 includes three new features for iPhones, according to Apple's release notes for the update, which is expected to be released next week.
As discovered during beta testing, iOS 26.5 enables end-to-end encryption for RCS messaging between iOS and Android devices. Apple says this security upgrade is limited to supported carriers around the world and will continue to roll out....
