PSA: Make Sure to Update, iOS 16.6.1 and macOS 13.5.2 Address Actively Exploited Vulnerability - MacRumorsOpen MenuShow RoundupsShow Forums menuVisit ForumsOpen Sidebar
Skip to Content

PSA: Make Sure to Update, iOS 16.6.1 and macOS 13.5.2 Address Actively Exploited Vulnerability

The macOS 13.5.2, iOS 16.6.1, iPadOS 16.6.1, and watchOS 9.6.2 updates that Apple released today includes fixes for security vulnerabilities that Apple says may have been actively exploited in the wild.

macbook air purple
According to Apple's security support page, in iOS, iPadOS, and macOS, processing a maliciously crafted image could lead to arbitrary code execution, allowing a hacker to gain access to the operating system with a simple picture. Apple fixed the ImageIO process by addressing a buffer overflow issue to improve memory handling.

In iOS, iPadOS, and watchOS, a maliciously crafted attachment in the Wallet app could also lead to arbitrary code execution. Apple addressed the validation issue with improved logic.

As these updates include important security fixes, everyone should install iOS 16.6.1, iPadOS 16.6.1, macOS 13.5.2, and watchOS 9.6.2 as soon as possible. Apple recommends these software updates for all users.

Update: As reported by Citizen Lab, the vulnerabilities are part of a "BLASTPASS" exploit chain that was observed having been used in the wild to deliver NSO Group's Pegasus spyware. Pegasus is of critical concern to government officials, journalists, activists, and others with potentially sensitive information on their devices.

The zero-click vulnerability allowed attackers to send a maliciously crafted PassKit (Wallet) image to a target via iMessage, infecting their device "without any interaction from the victim."

The attacks can be blocked by applying today's updates or by enabling Lockdown Mode on your device.

Related Forums: iOS 16, macOS Ventura

Popular Stories

American Express Gold Apple Pay Feature

American Express Announces New Apple Pay Feature

Tuesday June 30, 2026 10:27 am PDT by
American Express today announced that you can now redeem Membership Rewards points when checking out with Apple Pay on the web and in apps on the iPhone and iPad. When checking out with Apple Pay on iOS 18 or iPadOS 18 or later, tap on your eligible American Express card (Platinum, Gold, Green, and others) and select the Membership Rewards points option. You can use points to cover all or...
Apple Acquires Award Winning App Play Feature

Apple Acquires Award-Winning App 'Play'

Monday June 29, 2026 7:39 am PDT by
In February, Apple notified the European Commission that it would be acquiring certain assets from and have the right to hire certain employees from Rabbit 3 Times, the company behind the award-winning app design tool Play. The notification was published on the European Commission's website this week, following a four-month waiting period. Play was a Mac and iPhone app that allowed designers ...
series 10 apple watch titanium digital crown

Report: Apple Watch Redesign Coming Next Year With New Band System

Tuesday June 30, 2026 8:45 am PDT by
A "major overhaul" of the Apple Watch's design is due to arrive next year with a new system for connecting bands, according to a known Weibo leaker. In a set of recent posts, the leaker known as "Instant Digital" linked the new claim to older rumors about an "Apple Watch X" model, which was said to introduce a fresh design and break compatibility with the existing watch band system. Citing...

Top Rated Comments

37 months ago

Why would I update when the new os coming out in 2 weeks time
Because there's an actively exploited vulnerability around.
Score: 31 Votes (Like | Disagree)
k1121j Avatar
37 months ago
Is this the one that slows down my phone and makes it buggy so I wanna buy a new one?
Score: 28 Votes (Like | Disagree)
thinkgolden Avatar
37 months ago

macOS is still bad at this. I can install months of updates in Windows 5 times faster than a Mac updates.
I call B.S.!! Every time I have to unpack a DELL or Lenovo or any other PC in this IT world, I have to run updates 2 or 3 times because it can't do it at once and no way is it 5 times faster.
Score: 15 Votes (Like | Disagree)
37 months ago

For those of us who are stuck on an unsupported Mac OS version due to financial reasons, any details on how this image exploit is used so we can try to avoid it? Is it as simple as someone emailing you an image embedded into the body? Or an attachment you have to open?
I found an image that clearly demonstrates the procedure for solving your issue, But be sure to close your eyes when you view this image to avoid being hacked.



Attachment Image
Score: 15 Votes (Like | Disagree)
raziel101 Avatar
37 months ago
For those of us who are stuck on an unsupported Mac OS version due to financial reasons, any details on how this image exploit is used so we can try to avoid it? Is it as simple as someone emailing you an image embedded into the body? Or an attachment you have to open?
Score: 15 Votes (Like | Disagree)
37 months ago
So what's the difference between these updates and the automatic behind-the-scenes thing that is supposed to keep us all safe without us having to do anything?
Score: 14 Votes (Like | Disagree)

🔗 Related Apple News & Rumors

Stay updated with the latest Apple ecosystem news and verified rumors