12 October 2021

Apple fixes yet another iOS zero-day actively exploited by hackers


Apple fixes yet another iOS zero-day actively exploited by hackers

Apple has released a security update for iOS and iPad to fix a zero-day vulnerability that it says is being exploited in the real-world attacks.

The zero-day flaw (CVE-2021-30883) has been described as a buffer overflow issue caused by a boundary error within the IOMobileFrameBuffer subsystem. By exploiting this bug, a malicious application can trigger memory corruption and execute arbitrary code on with kernel privileges.

In July, Apple addressed another zero-day issue in IOMobileFrameBuffer (CVE-2021-30807), that, as in the above case, allowed a local application to execute code with kernel privileges.

As usual, Apple has refrained fr om publishing further information about when or wh ere attacks exploiting CVE-2021-30883 took place or threat actors behind them.

However, security researcher Saar Amar shared additional details on the vulnerability, and a proof-of-concept (PoC) exploit, noting that “this attack surface is highly interesting because it's accessible from the app sandbox (so it's great for jailbreaks) and many other processes, making it a good candidate for LPEs exploits in chains.”

Last month, Apple fixed a zero-day vulnerability said to have been exploited by hackers to compromise iPhones and Macs running older iOS and macOS versions.

Back to the list

Latest Posts

LightBasin hackers compromised 13 global telecoms in just two years

LightBasin hackers compromised 13 global telecoms in just two years

LightBasin is active since at least 2016 and is focused on Linux and Solaris servers, only interacting with Windows systems as needed.
20 October 2021
Suspected Chinese hackers reportedly hit 9 Israeli hospitals

Suspected Chinese hackers reportedly hit 9 Israeli hospitals

Attempted attacks come days after a massive ransomware attack on Hillel Yaffe Medical Center, attributed to the DeepBlueMagic group.
19 October 2021
State-sponsored hackers target orgs in South Asia with custom backdoor

State-sponsored hackers target orgs in South Asia with custom backdoor

Harvester has been observed using both custom malware and publicly available tools, such as Cobalt Strike Beacon and Metasploit, in their attacks.
19 October 2021