Apple veröffentlich iOS 16.5.1 (c) als schnelle Schicherheitsmaßnahme
Apple hat die so genannte schnelle Sicherheitsmaßnahme für iOS 16.5.1 erneut veröffentlicht. Nachdem der ursprüngliche Patch Probleme erzeugte, hatte der Konzern das Update zunächst zurückgezogen.

Es folgte auch
https://www.apfeltalk.de/magazin/feature/apple-veroeffentlich-ios-16-5-1-c-als-schnelle-schicherheitsmassnahme/
#Feature #iPhone #Mac #IOS1651 #MacOS1341 #RapidSecurityResponse #SchnelleSicherheitsmanahme

Rapid Security Response zurückgezogen
Apple hat offenbar beim Thema Rapid Security Response kein Glück. Der Konzern hat das gestern veröffentlichte Update zurückgezogen.

Du hast es vielleicht schon bemerkt: Apple hat eine kürzlich veröffentlichte Rapid Security Response für macOS, iOS und iPadOS zurückgezogen. Dieses Update war eigentlich geda
https://www.apfeltalk.de/magazin/news/rapid-security-response-zurueckgezogen/
#iPad #iPhone #Mac #News #RapidSecurityResponse #Rckzug #Update

Apple silently pulls its latest zero-day update – what now? - Previously, we said "do it today", but now we're forced back on: "Do not delay; do it as ... https://nakedsecurity.sophos.com/2023/07/11/apple-silently-pulls-its-latest-zero-day-update-what-now/ #rapidsecurityresponse #vulnerability #applesafari #zeroday #apple #ios #osx

Apple releases, quickly pulls Rapid Security Response update for 0-day WebKit bug - Enlarge (credit: Apple)

Yesterday, Apple published a new Rapi... - https://arstechnica.com/?p=1952750 #rapidsecurityresponse #macosventura #security #apple #ios16 #tech

Don't delay! Update today!

Apple Releases Rapid Security Response Updates for iOS 16.5.1 and macOS 13.4.1 to Fix Actively Exploited Vulnerability https://www.macrumors.com/2023/07/10/apple-releases-ios-16-5-1-macos-13-4-1-rsrs/

It's not an industry-first for a patch mechanism like #RapidSecurityResponse to fire without having a CVE on hand.

Take for example Microsoft's CVE-2021-1647 which describes an RCE in Defender that had a patch made available in November 2020 (https://learn.microsoft.com/en-us/microsoft-365/security/defender-endpoint/msda-updates-previous-versions-technical-upgrade-support?view=o365-worldwide#november-2020-platform-41820116--engine-11177004) while the actual CVE publication, vulnerability and exploit PoC were not available until January 12, 2021 (https://msrc.microsoft.com/update-guide/vulnerability/CVE-2021-1647)

Balancing threat response speed and disclosure of its full impact requires careful thought.

Apple delivers first-ever Rapid Security Response “cyberattack” patch – leaves some users confused - Just when we'd got used to three-numbered versions, such as "13.3.1", here comes an updat... https://nakedsecurity.sophos.com/2023/05/01/apple-delivers-first-ever-rapid-security-response-cyberattack-patch-leaves-some-users-confused/ #rapidsecurityresponse #securitythreats #vulnerability #malware #zeroday #apple #patch

iOS 16.4.1 (a): Apple veröffentlicht ersten Rapid Security Response
Kürzlich hat Apple die Rapid Security Responses eingeführt, eine Funktion um schneller auf Sicherheitslücken zu reagieren. Heute erscheint iOS 16.4.1 (a) und mehr.
Apples Rapid Security Response-Update für iOS 16.4.1 (a)
In den letzten Mona
https://www.apfeltalk.de/magazin/news/ios-16-4-1-a-apple-veroeffentlicht-ersten-rapid-security-response/
#iPad #iPhone #News #RapidSecurityResponse #iOS16.4.1.(a) #iPadOS16.4.1(a)

I know they tested it in beta, but I'm guessing the verification server can't handle the load when everyone is installing at the same time. #RapidSecurityResponse

It seems that the fact that #Apple has released an emergency patch for two #libxml2 vulnerabilities in #macOS 13.0.1, but no corresponding updates for Monterey or Big Sur, got some people thinking that those systems are not vulnerable. l think that conclusion is wrong!

The update was very fast on Ventura due to Rapid Security Response. These patches would have taken a lot longer to install on Monterey or Big Sur, so maybe Apple doesn’t think that weighs up against the risk of these vulnerabilities. Apple probably has a different bar for what requires a security patch with this feature.

Secondly, Apple has officially stated that not all vulnerabilities get fixed in older macOS versions due to architectural differences. While I’m sure they’ll eventually patch these, that does make it clear that you need to be on the latest OS to get all patches as soon as possible.