According to a statement released by the corporation, it has been made “aware of a report that this flaw may have been actively exploited.” On Wednesday, Apple issued two security bulletins related to the vulnerability; however, they did not garner much notice outside of tech magazines.
According to Rachel Tobac, CEO of SocialProof Security, a hacker might acquire “complete admin access to the device” if Apple’s description of the vulnerability is accurate. This would allow the hacker to “execute any code as if they are you, the user.” Apple has not commented on the problem.
Users are encouraged to update their affected devices, which include the iPhone 6S and later models; several models of the iPad, including the 5th generation and later, all iPad Pro models. Security experts have issued this recommendation. It also affects some models of the iPod.
“People who are in the public view,” such as activists or journalists, who may be the targets of sophisticated nation-state eavesdropping, should be especially attentive to the process of upgrading their software, according to Tobac. This includes everyone who is in the public eye.