Why update your iPhone to iOS 16.6.1?
Citizen Lab, an internet watchdog group at the University of Toronto, Canada, discovered a zero-click exploit in the iOS 16.6 version. This flaw reportedly opened a backdoor for Israeli cyber-intelligence and hacking group NSO.
Zero-click vulnerability allows the hacker to gain control of the victim’s device without the latter clicking or tapping anything. This is supposedly a part of NSO’s infamous Pegasus malware.
Pegasus, for the unaware, is allegedly bought by various governments around the world to secretly surveil political dissidents, journalists, human rights activists, etc. Citizen Lab claims the zero-click flaw in iOS 16.6 was targeted at a member of a civil society organization in Washington, D.C. in the US.
Still, it is not known who that is or if the threat extends to other markets and people. In any case, it’s advisable to download and update your iPhone to the latest version.
While investigating the zero-click exploit, Apple apparently found another vulnerability too.
So, two flaws are being fixed in this new iOS update:
- In the Wallet app: In this case, just receiving a malicious attachment is enough to trigger the exploit.
- In the ImageIO framework: In this case, the hackers gain control if an infected image gets processed on your device.
How to update iPhone to the latest iOS version 16.6.1
Step 1: Go to the iOS Settings.
Step 2: Tap on General
Step 3: Tap on Software Update and if you are on iOS 16.6, you should see the iOS 16.6.1 update available. Download and install it right away.
The iPadOS 16.6.1 update is also available with the same fixes. So, iPad users are also recommended to update their iPads.