Today Apple released iOS 11.2.2, macOS High Sierra 10.13.2 Supplemental Update, as well as Safari 11.0.2 for macOS Sierra and El Capitan. I highly recommend everyone install these updates ASAP as they contain an important security fix for the Spectre bug.
Last week it was announced that there were two security flaws in virtually every computer and smartphone processor sold over the past decade. iOS 11.2 and macOS 10.13.2 silently fixed the “Meltdown” bug before it became public knowledge. Today’s iOS 11.2.2 and 10.13.2 Supplemental Update fixed “Spectre”. Safari 11.0.2 mitigates the Spectre bug for older Mac software.
Users running iOS 10 or earlier are still vulnerable. Users running macOS Sierra or El Capitan are only partially protected by today’s Safari update.
Normally programs on a single computer are isolated from each other to some extent. These bugs theoretically could allow a malicious program on your computer to see information on your computer that it was not supposed to access, which could include information such as passwords.
It’s important to note that at this time there is no known software in the wild that utilizes these hacks, so there is no reason to panic, but please update your devices ASAP because we may see this theoretical software in the near future.
- iOS (iPhone, iPad, iPod Touch): Tap Settings > General > Software Update
- Mac: Click the Apple menu > App Store > Updates, or click this link.
Apple says Apple Watch is not vulnerable. Apple TV has not received an update yet but it should be arriving shortly.