Apple quietly patches yet another iPhone 0-day – check you have 15.0.2 – Naked Security

It’s been a few weeks for Apple, or maybe an “in-the-wild” few weeks, with several zero-day bugs necessitating emergency updates.

We should say “unexpected updates”, but all (or almost all) Apple security patches are, of course, unexpected in design.

Apple deliberately only announces security fixes after they have been published, so you could not schedule them even if you wanted to.

Apple claims that this exists “Customer protection”, because it prevents villains who may have heard rumors of a security hole but have not even figured it out from figuring out where to start looking for it.

On the other hand, it also means that you will hardly ever hear about official solutions or threat reductions from Apple, although these solutions can keep you safe under the gap between the zero-day gap that appears and the patch that is created, tested and released. .

Keep in mind that zero-day vulnerabilities refer to errors that cybercriminals know how to exploit before a patch is available, with the result that even a well-informed user or sysadmin would have had zero days to officially get ahead of Bad Guys.