Earlier this week, Apple rolled out iOS 12.2 update for iPhones. The update fixed over 50 bugs in the OS making iOS more secure. However, there are two vulnerabilities that hold the utmost importance and are the reason why you should install the update immediately.
According to Apple, the update fixes a bug that could allow a malicious app or website to access the device’s microphone without the knowledge of a user. The vulnerability CVE-2019-8566 was found by a researcher who prefers to stay anonymous. Apple says that the vulnerability was due to an API issue which is now fixed with the iOS 12.2 update. Another critical bug that Apple fixed, targeted GeoServices. The vulnerability CVE-2019-8553 was discovered by a researcher who prefers to stay anonymous. It targets the GeoServices and forces the device to execute arbitrary code when a malicious link sent through SMS is clicked by the users. This could allow an attacker to execute commands to delete files or to download sensitive data from the iPhone.
Apple iPhone users can head to Settings > General > Software Update and download the iOS 12.2 update today. The update patches more than 50 security vulnerabilities all of which are listed on Apple’s website (via 9news).