Apple has released a round of urgent software updates across nearly all its platforms—iOS 18.4.1, iPadOS 18.4.1, macOS 15.4.1, tvOS 18.4.1, and visionOS 2.4.1—aimed at patching two serious security vulnerabilities. These flaws, Apple says, may have already been exploited in the wild as part of “extremely sophisticated attacks” targeting specific individuals.
The first vulnerability lies in CoreAudio, Apple’s system for handling audio content. A bug in the framework’s memory management meant that maliciously crafted audio files could potentially execute arbitrary code simply by being processed. In other words: play the wrong file, and your device might be compromised.
The second issue was found in the Remote Participant Audio Control (RPAC) framework, which is used by communication apps to manage audio streams. This flaw could allow an attacker—already equipped with read/write access—to bypass Pointer Authentication, a hardware-based security feature meant to block such low-level exploits.
While Apple didn’t offer specifics about who was targeted or how the attacks unfolded, the company rarely uses the phrase “may have been exploited” unless there’s credible evidence of real-world abuse. That, coupled with the mention of “sophisticated attacks,” should be enough to raise eyebrows.
If you’re using an iPhone, iPad, Mac, Apple TV, or Vision Pro, it’s time to update—sooner rather than later. Apple has emphasized the importance of installing the patches promptly.
To update your iOS device, go to Settings > General > Software Update. If an update is available, tap "Download and Install." Ensure your device is connected to Wi-Fi and has sufficient battery or is plugged in.
Discover the latest Business News, Sensex, and Nifty updates. Obtain Personal Finance insights, tax queries, and expert opinions on Moneycontrol or download the Moneycontrol App to stay updated!
Find the best of Al News in one place, specially curated for you every weekend.
Stay on top of the latest tech trends and biggest startup news.
