Security Magazine logo
search
cart
facebook twitter linkedin youtube
  • Sign In
  • Create Account
  • Sign Out
  • My Account
Security Magazine logo
  • NEWS
    • Security Newswire
    • Technologies & Solutions
  • MANAGEMENT
    • Leadership Management
    • Enterprise Services
    • Security Education & Training
    • Logical Security
    • Security & Business Resilience
    • Profiles in Excellence
  • PHYSICAL
    • Access Management
    • Fire & Life Safety
    • Identity Management
    • Physical Security
    • Video Surveillance
    • Case Studies (Physical)
  • CYBER
    • Cybersecurity News
    • More
  • BLOG
  • COLUMNS
    • Cyber Tactics
    • Leadership & Management
    • Security Talk
    • Career Intelligence
    • Leader to Leader
    • Cybersecurity Education & Training
  • EXCLUSIVES
    • Annual Guarding Report
    • Most Influential People in Security
    • The Security Benchmark Report
    • The Security Leadership Issue
    • Top Guard and Security Officer Companies
    • Top Cybersecurity Leaders
    • Women in Security
  • SECTORS
    • Arenas / Stadiums / Leagues / Entertainment
    • Banking/Finance/Insurance
    • Construction, Real Estate, Property Management
    • Education: K-12
    • Education: University
    • Government: Federal, State and Local
    • Hospitality & Casinos
    • Hospitals & Medical Centers
    • Infrastructure:Electric,Gas & Water
    • Ports: Sea, Land, & Air
    • Retail/Restaurants/Convenience
    • Transportation/Logistics/Supply Chain/Distribution/ Warehousing
  • EVENTS
    • Industry Events
    • Webinars
    • Solutions by Sector
    • Security 500 Conference
  • MEDIA
    • Videos
      • Cybersecurity & Geopolitical Discussion
      • Ask Me Anything (AMA) Series
    • Podcasts
    • Polls
    • Photo Galleries
  • MORE
    • Call for Entries
    • Classifieds & Job Listings
    • Continuing Education
    • Newsletter
    • Sponsor Insights
    • Store
    • White Papers
  • EMAG
    • eMagazine
    • This Month's Content
    • Advertise
  • SIGN UP!
CybersecuritySecurity NewswireLogical SecuritySecurity & Business ResilienceSecurity Education & TrainingCybersecurity News

Apple warns of cybersecurity vulnerabilities affecting millions of devices

By Madeline Lauver
apple device security

Image from Pixabay

August 19, 2022

Apple has released updates for two disclosed security vulnerabilities with the potential to be exploited on millions of Apple devices.

According to the tech company, a kernel vulnerability — CVE-2022-32894 — and a WebKit vulnerability — CVE-2022-32893 — are present on various devices, including iPhones (6s or later), all iPad Pros, iPad Airs (2 or later), iPads (5 or later), iPad minis (4 or later), seventh generation iPod touches, and Mac computers running macOS Big Sur, Catalina or Monterey.

Cybersecurity vulnerabilities open devices up to threats

Apple has pushed updates patching the vulnerabilities out to users of iPhone, iPad and Mac devices. Anonymous security researchers uncovered the vulnerabilities, and the tech company stated that they are "aware of a report that [these issues] may have been actively exploited."

The kernel vulnerability (CVE-2022-32894) may allow applications to "execute arbitrary code with kernel privileges," while the WebKit vulnerability (CVE-2022-32893) may allow arbitrary code execution if malicious web content is processed via Safari, according to the company's disclosure statements.

The vulnerabilities may be related to one another, according to TechCrunch.

Mobile device security remains a critical enterprise security strategy

The vulnerabilities have the potential to expose enterprise networks via mobile devices, says Richard Melick, Director of Threat Reporting at Zimperium.

"Mobile is a critical part of the enterprise workforce, but remains a largely unaddressed attack surface ripe for exploitation and compromise," said Melick. "These latest exploits and vulnerabilities revealed by Apple are just a few of the mobile-specific attacks we have seen this year. Last year, the data showed a 466% increase in mobile-specific zero-day vulnerabilities, accounting for one in three of all reported zero-day attacks. So far this year, we have seen roughly the same volume of zero-day attacks against mobile, with seven of the 23 in the wild attacks being mobile specific. All it takes is one mobile device to fall victim to an exploit as part of a larger attack chain, leaving enterprise data integrity compromised."

Mobile device security is also a critical part of executive protection. With these high-profile cybersecurity vulnerabilities affecting Apple devices, enterprise security leaders should assess their business leaders' cyber risk. Rajiv Pimplaskar, CEO of Dispersive Holdings, Inc., highlighted the cybersecurity risks threatening executive devices. "According to BlackCloak research, 87% of executive devices have no security measures at all installed, and 76% are actively leaking data. The Apple security vulnerabilities taken in this context are a stark reminder of the dangers of an expanded attack surface with the proliferation of mobile endpoints," he said.

Affected organizations and users can install the updates released by Apple to protect their devices from exploits of the disclosed vulnerabilities. According to Corey Sinclair, Cyber Threat Intelligence Analyst at Horizon3ai, "We often find that malicious threat actors do not take advantage of zero-day vulnerabilities. Rather, successful cyber threat actors target companies and organizations that run outdated software and operating systems by using years-old vulnerabilities and weaknesses that vendors have already issued patches, and/or published fix-or mitigation actions."

KEYWORDS: Apple security cyber security threat data breach iPhone hack malicious code mobile devices security vulnerability

Share This Story

Looking for a reprint of this article?
From high-res PDFs to custom plaques, order your copy today!

Madeline Lauver is a former Editor in Chief at Security magazine. Within her role at Security, Lauver focused on news articles, web exclusives, features and several departments for Security’s monthly digital edition, as well as managing social media and multimedia content.

Recommended Content

JOIN TODAY
To unlock your recommendations.

Already have an account? Sign In

  • Security's Top Cybersecurity Leaders 2024

    Security's Top Cybersecurity Leaders 2024

    Security magazine's Top Cybersecurity Leaders 2024 award...
    Top Cybersecurity Leaders
    By: Security Staff
  • cyber brain

    The intersection of cybersecurity and artificial intelligence

    Artificial intelligence (AI) is a valuable cybersecurity...
    Cyber Tactics Column
    By: Pam Nigro
  • artificial intelligence AI graphic

    Assessing the pros and cons of AI for cybersecurity

    Artificial intelligence (AI) has significant implications...
    New Security Technology
    By: Charles Denyer
Subscribe For Free!
  • Security eNewsletter & Other eNews Alerts
  • eMagazine Subscriptions
  • Manage My Preferences
  • Online Registration
  • Mobile App
  • Subscription Customer Service

More Videos

Sponsored Content

Sponsored Content is a special paid section where industry companies provide high quality, objective, non-commercial content around topics of interest to the Security audience. All Sponsored Content is supplied by the advertising company and any opinions expressed in this article are those of the author and not necessarily reflect the views of Security or its parent company, BNP Media. Interested in participating in our Sponsored Content section? Contact your local rep!

close
  • Crisis Response Team
    Sponsored byEverbridge

    Automate or Fall Behind – Crisis Response at the Speed of Risk

  • Perimeter security
    Sponsored byAMAROK

    Why Property Security is the New Competitive Advantage

  • Duty of Care
    Sponsored byAMAROK

    Integrating Technology and Physical Security to Advance Duty of Care

Popular Stories

Pills spilled

More than 20,000 sensitive medical records exposed

Laptop in darkness

Verizon 2025 Data Breach Investigations Report shows rise in cyberattacks

Coding on screen

Research reveals mass scanning and exploitation campaigns

White post office truck

Department of Labor Sues USPS Over Texas Whistleblower Termination

Computer with binary code hovering nearby

Cyberattacks Targeting US Increased by 136%

2025 Security Benchmark banner

Events

May 22, 2025

Proactive Crisis Communication

Crisis doesn't wait for the right time - it strikes when least expected. Is your team prepared to communicate clearly and effectively when it matters most?

September 29, 2025

Global Security Exchange (GSX)

 

View All Submit An Event

Products

Security Culture: A How-to Guide for Improving Security Culture and Dealing with People Risk in Your Organisation

Security Culture: A How-to Guide for Improving Security Culture and Dealing with People Risk in Your Organisation

See More Products

Related Articles

  • Dispelling the Dangerous Myth of Data Breach Fatigue; cyber security news

    SonicWall suffers security vulnerability, affecting millions of managed devices and organizations

    See More
  • Fraud Cybersecurity Banking in Canada

    Massive Vulnerability Found Across 100's of Millions IoT Devices

    See More
  • wifi-freepik

    Wi-Fi vulnerability may put millions of devices at risk

    See More

Events

View AllSubmit An Event
  • March 6, 2025

    Why Mobile Device Response is Key to Managing Data Risk

    ON DEMAND: Most organizations and their associating operations have the response and investigation of computers, cloud resources, and other endpoint technologies under lock and key. 
View AllSubmit An Event
×

Sign-up to receive top management & result-driven techniques in the industry.

Join over 20,000+ industry leaders who receive our premium content.

SIGN UP TODAY!
  • RESOURCES
    • Advertise
    • Contact Us
    • Store
    • Want More
  • SIGN UP TODAY
    • Create Account
    • eMagazine
    • eNewsletter
    • Customer Service
    • Manage Preferences
  • SERVICES
    • Marketing Services
    • Reprints
    • Market Research
    • List Rental
    • Survey/Respondent Access
  • STAY CONNECTED
    • LinkedIn
    • Facebook
    • YouTube
    • X (Twitter)
  • PRIVACY
    • PRIVACY POLICY
    • TERMS & CONDITIONS
    • DO NOT SELL MY PERSONAL INFORMATION
    • PRIVACY REQUEST
    • ACCESSIBILITY

Copyright ©2025. All Rights Reserved BNP Media.

Design, CMS, Hosting & Web Development :: ePublishing