Apple has released an update to fix a critical security vulnerability that it says could have been used in an "extremely sophisticated attack against specific targeted individuals," Tech Crunch reports.
The update was released for Mac, iPhone and iPad, Safari, and the Vision Pro headset.
This vulnerability, known as a "zero-day," was discovered in WebKit, the browser engine used in Safari and other applications. Hackers were reportedly able to bypass WebKit’s security sandbox through this vulnerability by using specially crafted malicious web content. However, the sandbox typically restricts access to other parts of the system even if compromised.
Apple said the attack affected devices running software prior to iOS 17.2. No information about the hackers or victims was released.
In February, the company used similar wording for another vulnerability, but the connection between these attacks has not been confirmed.