by 
Apple has rolled out iOS 16.6.1, which arrives just ahead of their anticipated announcement regarding the release date of iOS 17 during a special event scheduled for September 12. This latest update addresses critical security concerns, as two vulnerabilities have been actively exploited.
In the release notes, Apple acknowledges that these vulnerabilities have been actively targeted. The first vulnerability resides in the ImageIO framework, potentially allowing attackers to execute arbitrary code through maliciously crafted images. The second vulnerability lies within Wallet, where opening a maliciously crafted attachment could enable an attacker to execute arbitrary code.
Installing the iOS 16.6.1 update promptly is essential to safeguard your iPhone against these security threats.
According to a report by TechCrunch, Citizen Lab, a research group specializing in government malware, uncovered an actively exploited zero-click vulnerability employed to deliver NSO Group’s Pegasus mercenary spyware. Pegasus is infamous for allegedly being used by various governments worldwide to target civil society activists, journalists, and opposition members.
Citizen Lab noted that this exploit chain could compromise iPhones running the latest iOS 16.6 version without requiring any interaction from the victim. As customary, Apple acknowledges the researchers who uncover security flaws and vulnerabilities. Their security updates page specifically credits The Citizen Lab at The University of Toronto’s Munk School for their assistance.
The iOS 16.6.1 update is now available for all eligible iPhones and iPads. To install the update, navigate to Settings > General > Software Update.
It’s worth noting that iOS 16.6.1 doesn’t introduce new features; the next major update, iOS 17, is eagerly anticipated for release in September.
