PSA: Make Sure to Update, iOS 16.6.1 and macOS 13.5.2 Address Actively Exploited Vulnerability

The macOS 13.5.2, iOS 16.6.1, iPadOS 16.6.1, and watchOS 9.6.2 updates that Apple released today includes fixes for security vulnerabilities that Apple says may have been actively exploited in the wild.

macbook air purple
According to Apple's security support page, in iOS, iPadOS, and macOS, processing a maliciously crafted image could lead to arbitrary code execution, allowing a hacker to gain access to the operating system with a simple picture. Apple fixed the ImageIO process by addressing a buffer overflow issue to improve memory handling.

In iOS, iPadOS, and watchOS, a maliciously crafted attachment in the Wallet app could also lead to arbitrary code execution. Apple addressed the validation issue with improved logic.

As these updates include important security fixes, everyone should install iOS 16.6.1, iPadOS 16.6.1, macOS 13.5.2, and watchOS 9.6.2 as soon as possible. Apple recommends these software updates for all users.

Update: As reported by Citizen Lab, the vulnerabilities are part of a "BLASTPASS" exploit chain that was observed having been used in the wild to deliver NSO Group's Pegasus spyware. Pegasus is of critical concern to government officials, journalists, activists, and others with potentially sensitive information on their devices.

The zero-click vulnerability allowed attackers to send a maliciously crafted PassKit (Wallet) image to a target via iMessage, infecting their device "without any interaction from the victim."

The attacks can be blocked by applying today's updates or by enabling Lockdown Mode on your device.

Related Forums: iOS 16, macOS Ventura

Top Rated Comments

Havoc035 Avatar
4 weeks ago

Why would I update when the new os coming out in 2 weeks time
Because there's an actively exploited vulnerability around.
Score: 31 Votes (Like | Disagree)
k1121j Avatar
4 weeks ago
Is this the one that slows down my phone and makes it buggy so I wanna buy a new one?
Score: 28 Votes (Like | Disagree)
raziel101 Avatar
4 weeks ago
For those of us who are stuck on an unsupported Mac OS version due to financial reasons, any details on how this image exploit is used so we can try to avoid it? Is it as simple as someone emailing you an image embedded into the body? Or an attachment you have to open?
Score: 15 Votes (Like | Disagree)
coolfactor Avatar
4 weeks ago

For those of us who are stuck on an unsupported Mac OS version due to financial reasons, any details on how this image exploit is used so we can try to avoid it? Is it as simple as someone emailing you an image embedded into the body? Or an attachment you have to open?
I found an image that clearly demonstrates the procedure for solving your issue, But be sure to close your eyes when you view this image to avoid being hacked.



Attachment Image
Score: 15 Votes (Like | Disagree)
thinkgolden Avatar
4 weeks ago

macOS is still bad at this. I can install months of updates in Windows 5 times faster than a Mac updates.
I call B.S.!! Every time I have to unpack a DELL or Lenovo or any other PC in this IT world, I have to run updates 2 or 3 times because it can't do it at once and no way is it 5 times faster.
Score: 15 Votes (Like | Disagree)
NMBob Avatar
4 weeks ago
So what's the difference between these updates and the automatic behind-the-scenes thing that is supposed to keep us all safe without us having to do anything?
Score: 14 Votes (Like | Disagree)

Popular Stories

Multi Display CarPlay 1

All-New Apple CarPlay Launching Later This Year With These 5 New Features

Friday September 29, 2023 11:29 am PDT by
At WWDC 2022 last year, Apple previewed the next generation of CarPlay, promising deeper integration with vehicle functions like A/C and FM radio, support for multiple displays across the dashboard, personalization options, and more. Apple said the first vehicles with support for the next-generation CarPlay experience would be announced in late 2023, but it has still not shared any additional...
BMW Logo iPhone 15 Pro

Warning: BMW Wireless Charging May Break iPhone 15's Apple Pay Chip

Sunday October 1, 2023 6:14 am PDT by
If you have an iPhone 15 and drive a BMW, it might be best to avoid charging the device with the vehicle's wireless charging pad for now. Over the past week, some BMW owners have complained that their iPhone 15's NFC chip no longer works after charging the device with their vehicle's wireless charging pad, according to comments shared on the MacRumors Forums and X, formerly known as Twitter. ...
iPhone 15 Pro lineup

Apple to Address iPhone 15 Pro Overheating Issue With iOS 17 Update

Saturday September 30, 2023 9:28 am PDT by
Apple plans to release an iOS 17 update to address a bug that may contribute to the reported iPhone 15 Pro and iPhone 15 Pro Max overheating issue, according to a statement the company shared today with MacRumors and Forbes reporter David Phelan. Apple also says some recent updates to third-party apps have overloaded the system and contributed to the overheating issue. The report notes that...
iphone se 4 modified flag edges

iPhone SE 4 Details: Action Button, USB-C Port, Face ID, and More

Wednesday September 27, 2023 1:34 pm PDT by
Significant changes are expected to arrive with Apple's fourth-generation iPhone SE, in terms of both design and hardware, MacRumors has learned. The iPhone SE 4, known internally under the codename Ghost, is expected to receive a new design derived almost entirely from the base model iPhone 14. According to our sources, the iPhone SE 4 will use a modified version of the iPhone 14 chassis...
iPhone 16 Side Feature

iPhone 16 and 16 Pro: Preliminary Weights and Dimensions

Friday September 29, 2023 12:34 pm PDT by
MacRumors has obtained preliminary information on the weights and dimensions planned for the iPhone 16, iPhone 16 Plus, iPhone 16 Pro, and iPhone 16 Pro Max. The information corroborates previous reports suggesting that the iPhone 16 Pro and 16 Pro Max will feature larger displays. iPhone 16 and 16 Plus Current information suggests that the iPhone 16 and 16 Plus will maintain the same...
uk bank account apple wallet 2

Apple Wallet's New Bank Account Feature Likely to Expand to U.S.

Friday September 29, 2023 8:11 pm PDT by
Starting with the iOS 17.1 beta released this week, iPhone users in the U.K. can add debit and credit cards from select banks in the country to the Wallet app and view their available balances and latest transactions for those accounts. Apple calls this feature Connected Cards, and it's currently available in the U.K. only, but there is now evidence to suggest it will expand to the U.S. in...
iPhone 15 Pro Cameras

Apple Says iPhone 15 Pro's Titanium Frame Does Not Contribute to Overheating Issue

Saturday September 30, 2023 11:10 am PDT by
Apple today said it plans to release an iOS 17 software update with a bug fix for the iPhone 15 Pro and iPhone 15 Pro Max overheating issue, and the company has since shared additional details about the matter with MacRumors. Importantly, Apple said the issue is not related to the titanium frame. Contrary to a report this week, Apple said the iPhone 15 Pro's design does not contribute to...