You should wait at least until macOS 28 is released...it's never safe to upgrade
Got a tip for us?
Let us know
Become a MacRumors Supporter for $50/year with no ads, ability to filter front page stories, and private forums.
Update Now: iOS 18.6.2 and macOS Sequoia 15.6.1 Fix Actively Exploited Vulnerability
- Thread starter MacRumors
- Start date
- Sort by reaction score
First time I see someone using Siri to restart the phone. If your situation happens on me the only thing I can do is leaving the phone aside until battery runs dry before trying to restart as I have disabled Siri entirely.
If the government had a backdoor to iOS, you just know the current administration in the White House would be using that nonstop in extremely evident ways.
It makes me think such a backdoor likely does not exist. My guess is more that governments have the ability to hack a specific targets iPhone if they want to (example Pegasus), but it is a time consuming and costly task, so rarely used.
As I understand it, Apple didn't "remove" Flash—they just didn't provide Flash support on iOS devices. I don't remember if they ever explicitly blocked Flash on iOS per se—maybe someone else here remembers it better.
Flash has always (?) been possible to use on macOS computers, provided you install the necessary plug-in from Adobe.
(Edit: Apple did add Flash Player to their malware recognition on macOS, according to this HowToGeek article.)
Your question, "what image file type is so complicated that it can be used as an attack vector?" is a good one, though. I'm always surprised when I read about how security flaws are found in even the most benign of image file formats. Apparently it's not so much the file contents itself, as the way that the image interpreter processes it. Those who want to hack into the image file formats need to know how the graphics are processed, and then they exploit weaknesses in the processing code. Pretty amazing stuff, and it really is a shock to think that even image formats can be compromised with the right bit of knowledge and in certain situations.
Last edited:
Could this not have been a “Security Response” update? Are those even a thing anymore?
You would be surprised about some of the data storage policies. Electronic devices like SSDs with encryption have changed the game a lot the last 15 years
Would they? Do you really think government would just let you know? I know stupid people are everywhere but there are smart ones trying to safeguard stupidity as much as possible.
Your external monitor is now unsafe to use according to Apple.
Those image formats may be benign on the surface, but underneath they are quite complex nowadays. Even JPEG has JPEG-XL format apparently for higher resolution images. On the other hand, it is nearly impossible to safeguard everything from the beginning. It could also be just some lazy coding here and there that causes the problems. It is quite scary really.
Still, no tech can safeguard stupidity. And this administration is full of it.
But also they are the ones making the exploits for Apple devices. There's a reason some governments in other countries don't use Apple products.
Apple faces partial iPhone ban in China
The Chinese government plans to expand a ban on the use of iPhones to state firms and agencies.
www.euronews.com
[Exclusive] Korean military set to ban iPhones over 'security' concerns
South Korea’s military is considering a comprehensive ban on iPhones in military buildings due to increasing concerns about possible leaks of sensitiv
Смартфоны Apple запретили использовать в служебных целях. Какая мобильная экосистема может прийти им на смену? - Российская газета
Минцифры вводит запрет на использование смартфонов и планшетов Apple для доступа к рабочим приложениям и рабочей переписке, сообщил глава министерства Максут Шадаев. Такие же запреты уже ввели Минпромторг, Минтранс, Федеральная налоговая служба, ряд других ведомств и несколько крупных компаний...
01001111 01110000 01100101 01110010 01100001 01110100 01101001 01101111 01101110 00100000 01010100 01110010 01101001 01100001 01101110 01100111 01110101 01101100 01100001 01110100 01101001 01101111 01101110
Yes, I understand the smart move would be to not reveal the fact…but that assumes the smart people have enough power to control the situation.
What I see in the US today, is a President who has taken over control of every part of government. I don’t think such a tool could be kept secret from his administration.
I also think the current administration would quickly use such a tool to target those they didn’t like and advance their political agenda, even at the cost of revealing the existence of such a tool.
Last edited:
Well ... that completely wiped my Bash history. ~/.bash_history has size zero. 
EDIT: This was down to me. In an attempt to keep a complete history, I followed google-AIs advice to set histsize to -1. This may work perfectly on linux but on MacOS it just leads to your history getting trashed.
EDIT: This was down to me. In an attempt to keep a complete history, I followed google-AIs advice to set histsize to -1. This may work perfectly on linux but on MacOS it just leads to your history getting trashed.
Last edited:
Not sure but chances are if these fixes aren’t already in the latest 26 betas we’ll probs get them in the next batch of builds.
So this previous Saturday I upgraded my iPhone 16 Plus to 18.6.1 and it wiped out my eSIM. Had to get a new phone and found out this is not an uncommon issue.
iPhone eSIM erased after iOS 18 Update - Apple Community
Not sure I am in a rush to update to this.
Of course, but appreciating something versus needing something is two different things. I can appreciate a Ferrari, but if I’m hauling lumber is probably not going to be ideal. Even people with these security needs could test the beta on an alternate device linked to a separate iCloud account.
My thought with beta anything is the bugs could be exploited. Also, I wonder if it gets the same priority for security patches.
Nothing would surprise me when it comes to stuff like this. I’m pretty sure there’s a Facebook group chat where they’re talking all kinds of good stuff 😂
I was rather pointing out that there are people who need the security who do not have the intellectual capacity to realise beta versions are inappropriate for them. "Appreciate" as understand rather than "like".
Beta versions could be better or worse in terms of security. But while they are beta, we simply cannot assess.
This is the world of military intelligence. If you are a big enough target, no consumer device can protect you. I was talking about day to day operations without them explicitly in the militaryBut also they are the ones making the exploits for Apple devices. There's a reason some governments in other countries don't use Apple products.
Apple faces partial iPhone ban in China
The Chinese government plans to expand a ban on the use of iPhones to state firms and agencies.
[Exclusive] Korean military set to ban iPhones over 'security' concerns
South Korea’s military is considering a comprehensive ban on iPhones in military buildings due to increasing concerns about possible leaks of sensitivwww.koreaherald.com
Смартфоны Apple запретили использовать в служебных целях. Какая мобильная экосистема может прийти им на смену? - Российская газета
Минцифры вводит запрет на использование смартфонов и планшетов Apple для доступа к рабочим приложениям и рабочей переписке, сообщил глава министерства Максут Шадаев. Такие же запреты уже ввели Минпромторг, Минтранс, Федеральная налоговая служба, ряд других ведомств и несколько крупных компаний...rg.ru
01001111 01110000 01100101 01110010 01100001 01110100 01101001 01101111 01101110 00100000 01010100 01110010 01101001 01100001 01101110 01100111 01110101 01101100 01100001 01110100 01101001 01101111 01101110
This has been identified recently for other unix OSes.
It's as simple as a jpeg or png. The malicious code is in the file container of the image itself. A "polyglot abuse" of the format. Can be anything, from bash to more sophisticated code.
The attack workflow itself is quite complex but others can get inspiration and get easier attacks as long as the vulnerability is open
In my experience, the update will be in the next beta. Agree with your opinion.
Current administration? The one that was actually spied on by the oppo party/fbi/cia using FISA warrants obtained with bogus information? Wow