■■■■■ Apple fixes “zero-click” iMessage zero-day exploited to deliver spyware (CVE-2021-30860).
Apple has released security updates for macOS, iOS, iPadOS, watchOS and Safari that patch two vulnerabilities (CVE-2021-30860, CVE-2021-30858) that are being exploited in attacks in the wild. About the vulnerabilities (CVE-2021-30860, CVE-2021-30858) Active exploitation of CVE-2021-30860, a integer overflow bug that could be exploited via a maliciously crafted PDF to achieve execution of malicious code on vulnerable devices, was flagged by researchers with The Citizen Lab.
https://www.helpnetsecurity.com/2021/09/14/cve-2021-30860/
https://t.me/cKure/9319