Apple and Google have rolled out multiple software updates to address a hacking campaign that targeted an unspecified number of users, after security flaws in their products were found to be actively exploited.
Google on Wednesday issued patches for several vulnerabilities in its Chrome browser, warning that one of the bugs had been exploited in the wild before the fix was released. The company initially provided few details, an uncommon move that suggested the severity of the threat.
On Friday, Google disclosed that the flaw had been identified by Apple’s security engineering team in collaboration with Google’s Threat Analysis Group, which tracks activity by government-backed hackers and commercial spyware operators. The involvement of those teams indicates the campaign may have been highly targeted and state-linked.
Apple, meanwhile, released security updates across its ecosystem, including iPhones, iPads, Macs, Vision Pro, Apple TV, Apple Watch and the Safari browser. The company said it had patched two vulnerabilities and was aware that at least one had been exploited in an “extremely sophisticated attack” against specific individuals using older versions of iOS. Apple and Google did not immediately respond to requests for comment.
