Apple Releases Patch for WebKit Zero-Day Vulnerability Exploited in Targeted Attacks
Apple on Tuesday released a security update to address a zero-day flaw that it said has been exploited in "extremely sophisticated" attacks
Security updates fix software weaknesses, reduce exploitable risk, and may address vulnerabilities affecting systems, applications, and devices.
Search across headline titles and summaries.
Background for this topic.
Security updates are vendor-released patches, fixes, or configuration changes that address vulnerabilities and other weaknesses in operating systems, applications, libraries, firmware, cloud services, and network equipment. They may correct exploitable code, tighten security controls, or provide mitigations when a complete fix is not yet available.
For security practitioners, update news informs vulnerability management: assess whether affected assets are deployed, determine exposure and exploitability, prioritize urgent fixes, and verify installation. Applying updates can reduce attack paths such as remote code execution or privilege escalation, but rushed changes can disrupt services, so testing, staged deployment, rollback plans, and compensating controls may be needed. Advisories can also reveal required configuration changes, affected dependencies, or unsupported versions that need replacement.
Apple on Tuesday released a security update to address a zero-day flaw that it said has been exploited in "extremely sophisticated" attacks
Taiwanese company Moxa has released a security update to address a critical security flaw impacting its PT switches that could permit an attacker to bypass authentication guarantees