"Apple Patches an NSO Zero-Day Flaw Affecting All Devices"

Apple has released security updates that address a critical zero-day vulnerability affecting iPhones, iPads, Apple Watches, and Mac computers. The security flaw, called FORCEDENTRY, was reportedly exploited to push Pegasus spyware from Israel's NSO Group. According to Citizen Lab, the zero-day flaw took advantage of a flaw in Apple's iMessage, which was used to push the Pegasus spyware. Pegasus enables its government customers to access a target's device, thus allowing them to obtain personal data, photos, messages, and more. Researchers at Citizen Lab found evidence of the FORCEDENTRY exploit on a Saudi activist's iPhone. The exploit is said to take advantage of a weakness in how Apple devices render images on the display. This article continues to discuss the FORCEDENTRY vulnerability, its exploitation by Pegasus, and the security updates released by Apple to patch the vulnerability.

TechCrunch reports "Apple Patches an NSO Zero-Day Flaw Affecting All Devices"