New Apple Security Flaws Affect Recent Macs, iPads, and iPhones

by Anika Shah - Technology
0 comments

Apple Devices Face New Security Threats: SLAP and FLOP Flaws Exploited

A pair of newly discovered vulnerabilities, appropriately named SLAP and FLOP, pose a significant risk to Apple device users. These vulnerabilities, found hidden within Apple’s processor architecture, could potentially allow malicious actors to steal sensitive data like login credentials directly from web browsers like Chrome and Safari.

Researchers at the Georgia Institute of Technology and Ruhr University Bochum unveiled these threats, warning of implications for a wide range of devices released since 2021.

Understanding the Threat: How SLAP and FLOP Work

Both SLAP and FLOP exploit a common technique known as speculative execution. This process, used by processors to anticipate and pre-fetch instructions, speeds up processing but introduces a potential vulnerability. If a processor mispredicts the code to be executed, attackers can exploit this miscalculation to access data that is normally protected.

Current Impact: A Growing List of Affected Devices

The vulnerabilities are believed to impact most Apple devices released since 2021, including:

  • Macs released since 2022
  • Mac desktops released since 2023
  • iPads and iPhones released since 2021

Crucially, devices equipped with specific processors are at increased risk: those with M2 or A15 chips are vulnerable to SLAP, while those powered by M3 or A17 processors are susceptible to FLOP.

Immediate Action Needed: Mitigating the Risk

Although no evidence currently suggests that these vulnerabilities have been exploited in the wild, the potential for harm is significant. Apple acknowledges the potential risk and states that they are working on a fix through software updates.

Until those updates are released, Apple users should take the following steps to minimize their risk:

  • Update Your Devices: Always keep your devices updated with the latest software versions and security patches.
  • Be Cautious Online: Be wary of clicking on links or opening attachments from unknown sources.

  • Strong Passwords and Two-Factor Authentication: Utilize strong passwords for all accounts and enable two-factor authentication whenever possible to add an extra layer of protection.

    By adopting these measures, Apple users can significantly reduce the risk posed by these vulnerabilities and safeguard their sensitive data.

Related Posts

Leave a Comment