2 min read

iOS 9.3.4 released, fixing critical security hole. Update now

Graham CLULEY

August 05, 2016

Ad One product to protect all your devices, without slowing them down.
Free 90-day trial
iOS 9.3.4 released, fixing critical security hole. Update now

 

Apple has just released iOS 9.3.4, the latest versions of its mobile operating system for iPhone and iPad users, and owners of the devices are recommended to upgrade as soon as possible.

The reason why you should update your iPhones and iPads? Well, it’s not because of any fancy new bells-and-whistles that Apple has introduced to the operating system, but because it has fixed an important security hole under the hood that if left unpatched could have opened opportunities for hackers to run malicious code on your device.

The flaw was discovered by Team Pangu, a group best known for producing tools to help users jailbreak devices running iOS. Here’s how Apple curtly describes the patch in its security bulletin:

IOMobileFrameBuffer

Available for: iPhone 4s and later, iPad 2 and later, iPod touch (5th generation) and later

Impact: An application may be able to execute arbitrary code with kernel privileges

Description: A memory corruption issue was addressed through improved memory handling.

CVE-2016-4654: Team Pangu

Chances are that the flaw was one of those being used by Team Pangu to help users jailbreak their devices. My views is that the typical iOS user would be unwise to jailbreak their iPhones or iPads because of the risks of allowing unvetted apps from running on your smartphone.

In order to update your iPhone or iPad to iOS 9.3.4, plug it in and install the update by visiting Settings / General / Software Update.

ios-9-3-4-update

It’s only two weeks since Apple released its last version of iOS – version 9.3.3. And the next major version – iOS 10 – is anticipated to be released in September. But never make the mistake of thinking that having to regularly install updates on your treasured smartphone is a pain in the neck. Because what’s the alternative? Not receiving any security updates at all?

If mobile phone users never receive security updates then they risk becoming easy pickings for organised online criminals.

As it is, most iPhone and iPad users are well served when it comes to easily installing security updates. If you ever think security is a pain on your mobile device, just have a word with your Android-owning friends many of whom will find it hard to remember when (if ever) they received their last operating system update.

News of the security update comes at the same time as Apple’s announcement that it was finally introducing a bug bounty, offering up to $200,000 to vulnerability researchers who discover critical security holes in its products.

tags


Author



Right now

Top posts

Enhance your cyber resilience and privacy on Computer Security Day in four easy steps

Enhance your cyber resilience and privacy on Computer Security Day in four easy steps

November 29, 2022

2 min read
How to monitor your online privacy during your Thanksgiving trip

How to monitor your online privacy during your Thanksgiving trip

November 22, 2022

3 min read
Just your yearly dose of Black Friday spam: Cybercrooks get ahead of the game to steal shoppers’ info

Just your yearly dose of Black Friday spam: Cybercrooks get ahead of the game to steal shoppers’ info

November 16, 2022

6 min read
Bitdefender VPN in 2022: the new, the improved, and the soon-to-be

Bitdefender VPN in 2022: the new, the improved, and the soon-to-be

November 14, 2022

5 min read
Cyber Tips for a Spook-Free Halloween

Cyber Tips for a Spook-Free Halloween

October 26, 2022

3 min read
August Spam Debrief: Bitdefender Labs Warns of Fraud Campaigns Exploiting the Russia-Ukraine War

August Spam Debrief: Bitdefender Labs Warns of Fraud Campaigns Exploiting the Russia-Ukraine War

August 31, 2022

4 min read

FOLLOW US ON

SOCIAL MEDIA


You might also like

Hacking cars remotely with just their VIN Hacking cars remotely with just their VIN
Graham CLULEY

December 05, 2022

2 min read
Russian courts attacked by CryWiper malware that poses as ransomware Russian courts attacked by CryWiper malware that poses as ransomware
Graham CLULEY

December 05, 2022

2 min read
Android App in Google Play Store Was Harvesting SMS Messages Helping Criminals Create New Accounts Android App in Google Play Store Was Harvesting SMS Messages Helping Criminals Create New Accounts
Silviu STAHIE

December 02, 2022

1 min read