WebKit and Kernel vulnerabilities could allow attackers to control devices remotely and install malware with no interactions with the user required
Enable arbitrary code execution on iPhones, iPads and Macs
The bugs allowed the installation of Triangulation spyware on iPhones through iMessage zero-click exploits
Flaws under active use in attacks
'Apple uses its power over browsers to strip-mine and sabotage the web,' browser veteran says
The use-after-free vulnerability could enable an attacker to run arbitrary code execution on vulnerable devices
The vulnerability stems from an issue with Apple's implementation of a JavaScript API which is part of Apple's WebKit
The bug exists in Webkit, the browser engine which powers the Safari browser across all Apple devices
Malvertising campaign run by a group called eGobbler takes advantage of a zero-day security flaw in WebKit that Google still hasn't patched