Apple has urged users to update their Mac systems after uncovering two significant security vulnerabilities actively exploited by hackers. The flaws, discovered in WebKit and JavaScriptCore—the core technologies powering Safari and other web content—could allow attackers to gain unauthorized access to user data.
The Threats
The first vulnerability involves maliciously crafted web content that could execute unauthorized code on the system, potentially compromising user security. Apple addressed this issue with enhanced validation checks. The second, a cross-site scripting vulnerability in WebKit, could let hackers inject harmful code into websites or apps. This flaw was resolved by improving cookie state management.
Both vulnerabilities were reported by Google’s Threat Analysis Group (TAG), a team known for identifying government-sponsored cyberattacks. Apple confirmed these issues may have already been exploited on systems running Intel-based Mac chips.
Urgency to Patch
Apple released security updates on November 19 for macOS, iOS, and iPadOS to address these vulnerabilities. The urgency of the matter even caught the attention of Binance’s former CEO, Changpeng “CZ” Zhao, who publicly advised users to update their systems immediately. “If you use a MacBook with an Intel chip, update asap!” he wrote on social media.
The flaws, classified as zero-day vulnerabilities, are especially dangerous because they were exploited before a fix was available. Apple typically keeps details of such issues under wraps until a thorough investigation is complete and patches are deployed.
What We Know So Far
One of the flaws, identified as CVE-2024-44308, exploited JavaScriptCore to execute malicious code stealthily. The second, CVE-2024-44309, facilitated cross-site scripting attacks via WebKit, a vulnerability often targeted for its wide application in Apple’s ecosystem.
While Apple hasn’t disclosed the attackers’ identities, the involvement of Google’s TAG raises suspicions that a state-sponsored entity may be behind the exploits. Notably, recent cyber campaigns from North Korea targeted Apple systems, including a phishing campaign earlier this month. Although that malware couldn’t breach updated systems, the pattern underscores the persistent threat to Apple’s macOS users.
Apple strongly recommends all users install the latest updates to mitigate potential risks. These patches not only address the vulnerabilities but also safeguard against future exploitation. For those using Intel-based Mac systems, prompt action is particularly critical.
By keeping systems updated, users can stay ahead of malicious actors looking to exploit software weaknesses—a vital step in today’s cybersecurity landscape.