If you own an iPhone, iPad, or Mac, then it’s essential you update it with the latest security patch as soon as possible due to a zero-day exploit and risk of malware infection. Apple has issued a security update with iOS 14.7.1, iPadOS 14.7.1, and macOS Big Sur 11.5.1. In all three cases, the update fixes a memory corruption issue that allowed an app to “execute arbitrary code with kernel privileges.” Why it’s so important to apply the security patches immediately is because Apple admits the exploit is already being actively used in the wild.
As Bitdefender reports, the zero-day exploit was reported to Apple by an anonymous researcher. It takes advantage of memory corruption problem in the IOMobileFrameBuffer kernel extension, which the operating systems use to manage the screen framebuffer. If a hacker manages to corrupt the memory, they can run arbitrary code and this has already been used to install malware on Apple’s devices.