Apple Releases iOS 9.3.5 With Fix for Three Critical Vulnerabilities Exploited by Hacking Group

Discussion in 'MacRumors.com News Discussion' started by MacRumors, Aug 25, 2016.

  1. MacRumors macrumors bot

    MacRumors

    Joined:
    Apr 12, 2001
    #1
    [​IMG]


    Apple today released an iOS 9.3.5 update for the iOS 9 operating system, almost a month after releasing iOS 9.3.4 and a few weeks before we expect to see the public release of iOS 10, currently in beta testing.

    iOS 9.3.5 is available immediately to all devices running iOS 9 via an over-the-air update.

    [​IMG]

    iOS 9.3.5 is likely to be the last update to the iOS 9 operating system, introducing final bug fixes, security improvements, and performance optimizations before iOS 9 is retired in favor of iOS 10. iOS 9.3.4, the update prior to iOS 9.3.5, included a critical security fix patching the Pangu iOS 9.3.3 jailbreak exploit. iOS 9.3.5 features major security fixes for three zero-day exploits and should be downloaded by all iOS users right away.

    According to The New York Times the three security vulnerabilities patched in the update were exploited by surveillance software created by NSO Group to jailbreak an iPhone and intercept communications.

    In an overview of the exploits, security firm Lookout says NSO Group's spyware software, nicknamed "Pegasus," was highly sophisticated, installing itself through a link sent via a text message.

    The exploit was initially discovered on August 11 after human rights defender Ahmed Mansoor received a suspicious link and sent it to Citizen Lab and Lookout. Had Mansoor clicked the link, it would have jailbroken his iPhone and installed "sophisticated malware" able to intercept phone calls, text messages, FaceTime calls, email, and more.

    Pegasus is the most advanced attack Lookout has seen because it is customizable, can track a range of things, and uses strong encryption to avoid detection. Lookout believes "Pegasus" had been in the wild for quite some time before it was discovered, with some evidence dating back to iOS 7.

    Citizen Lab and Lookout informed Apple of the vulnerabilities and the company worked quickly to implement a fix, patching the exploits in just 10 days.

    Article Link: Apple Releases iOS 9.3.5 With Fix for Three Critical Vulnerabilities Exploited by Hacking Group
     
  2. Sirious macrumors 65816

    Sirious

    Joined:
    Jan 2, 2013
    Location:
    United Kingdom
    #2
    How the meeting for this release went:
    "Quick! Distract them from that social network rumour!" :p
     
  3. smacrumon macrumors 68030

    smacrumon

    Joined:
    Jan 15, 2016
    #3
    Is it odd that Apple would release so many updates to iOS over a year? We're at iOS 9.3.5 now.

    Think back to iOS 7, we got to 7.1.2.
     
  4. Michael Goff Suspended

    Michael Goff

    Joined:
    Jul 5, 2012
    #4
    I like the new Apple that doesn't just sit and hope. I like it that they seem to be pushing forward with more fixes.
     
  5. C DM macrumors Sandy Bridge

    Joined:
    Oct 17, 2011
    #5
    Odd that they are actually working on things and releasing more updates rather than no updates? Certainly had a good pattern of those with iOS 8.
     
  6. asv56kx3088 macrumors 6502

    Joined:
    Jun 24, 2013
    #6
    I think we got to 4.3.5 at iOS 4 days.
     
  7. SandboxGeneral Moderator emeritus

    SandboxGeneral

    Joined:
    Sep 8, 2010
    Location:
    Detroit
    #7
    I'm a bit surprised to see another update so soon before iOS 10 is released.
     
  8. WB2Colorado macrumors regular

    WB2Colorado

    Joined:
    Aug 1, 2008
    Location:
    Durango, Colorado
  9. smacrumon macrumors 68030

    smacrumon

    Joined:
    Jan 15, 2016
    #9
    Hmmm. Really? "pushing forward with more fixes"? What about push forward with a release that doesn't require fixes when released. Isn't this like "a ship with a hole in the bottom, leaking water, and [the] job is to get the ship pointed in the right direction"?
     
  10. cale508 macrumors 6502

    Joined:
    Jun 10, 2015
    Location:
    IL
    #10
    Not surprising, they are leaving iOS 9 as secured as possible for devices not making it into iOS 10.
     
  11. Dave245 macrumors 604

    Dave245

    Joined:
    Sep 15, 2013
    #11
    Calm down it will arrive, as I've said there is the rest of today (it's early in Cupertino) also there's tomorrow.
     
  12. C DM macrumors Sandy Bridge

    Joined:
    Oct 17, 2011
    #12
    There's the imaginary world, and then there's reality. Whether we like it or not we all live in the latter (with essentially all that comes with it and applies to it).
     
  13. vertsix macrumors 65816

    vertsix

    Joined:
    Aug 12, 2015
  14. jarred125 macrumors 6502a

    Joined:
    Nov 8, 2011
    #14
    Going to throw this out there. Since it is obviously so simple of a task in the minds of many here at Macrumors, why don't you all band together and DO IT YOURSELF? What a novel concept, right? Since it obviously requires just rolling up the sleeves and digging in it should be doable by anyone!

    Seriously, you can put up or shut up as far as I am concerned. Reducing the an extremely complex issue to "they should just do it!!!!" is asinine.
     
  15. SeattleMoose macrumors 68000

    Joined:
    Jul 17, 2009
    Location:
    Der Wald
    #15
    Or...their SW is getting more buggy :(
     
  16. ghostface147 macrumors 68030

    ghostface147

    Joined:
    May 28, 2008
    #16
    Does this fix the bug for voiceovers and voice control?
     
  17. bigchrisfgb macrumors 65816

    Joined:
    Jan 24, 2010
    #17
    I've not had any problems with any iOS 9 releases. Maybe Apple are releasing these updates to fix security concerns like they say they are and ones that were documented only a week or so ago?
     
  18. sbailey4 macrumors 68040

    sbailey4

    Joined:
    Dec 5, 2011
    Location:
    USA
    #18
    Shouldn't be, There are several devices that will remain on iOS 9.x so it needs to be as good as it can be.
     
  19. jonnyb098 macrumors 68030

    jonnyb098

    Joined:
    Nov 16, 2010
    Location:
    Michigan
    #19
    They know there will still be millions of people that will be on iOS 9 in the coming months. Better to patch the bugs I guess.
     
  20. Northgrove macrumors 65816

    Joined:
    Aug 3, 2010
    #20
    I actually think that in the iOS 7 days, iOS got pretty stale between the major releases. I think I prefer this way.

    iOS 9.1 had 150 new emojis.
    iOS 9.2 had major Apple Music improvements and a load of other fixes.
    iOS 9.3 came with Night Shift, News improvements, protected Notes, etc.

    I'd prefer that style rather than wait for iOS 10 to get all that.

    Maybe it's something that won't persist though? Although iOS 8 was also much like this. Anyway, I think it makes sense to iterate on a particular major release a bit more than usual if that is the focus on it.
     
  21. smacrumon macrumors 68030

    smacrumon

    Joined:
    Jan 15, 2016
    #21
    What I'm saying is, maybe the releases are too premature before being made publicly available.
     
  22. SandboxGeneral Moderator emeritus

    SandboxGeneral

    Joined:
    Sep 8, 2010
    Location:
    Detroit
    #22
    I don't disagree at all; just surprised me is all, since they released 9.3.4 like a week or so ago.
     
  23. now i see it macrumors 68040

    Joined:
    Jan 2, 2002
    #23
    Interesting... 9.3.4 (which I didn't install) was 120MB for ip6+. Now 9.3.5 is only 39.5MB. hmmm
     
  24. jonnyb098 macrumors 68030

    jonnyb098

    Joined:
    Nov 16, 2010
    Location:
    Michigan
    #24
    Yeah I look at this as Apple missing things and thankfully fixing them. Not sure if that's a good thing or bad thing that bugs aren't being squashed sooner. iOS 7/8/9 weren't exactly smooth sailing in comparison to previous versions.
     
  25. jarred125 macrumors 6502a

    Joined:
    Nov 8, 2011
    #25
    What I am saying is, you have no clue how anything in software development works if you expect a perfect world like you seem to imagine.
     

Share This Page