Apple launches iOS 15.2.1 to patch a severe HomeKit DDoS vulnerability

Apple has released iOS 15.2.1, its latest software update for recent iPhone and iPad gadgets. The patch tends to be a vulnerability found within the organization’s HomeKit protocol for interfacing unique smart home gadgets. The bug permitted malicious people to compel an iPhone or iPad to repeatedly crash and freeze by changing the name of a HomeKit-compatible gadget to incorporate in excess of 500,000 characters. Since iOS backs up HomeKit gadget names to iCloud, it was workable for iOS clients to get stuck in an endless loop of accidents.

Security specialist Trevor Spiniolas found the vulnerability and publicly revealed it on January 1st. As indicated by Spiniolas, he informed Apple regarding the bug back in August. The organization had supposedly intended to address the vulnerability before the finish of 2022 however later postponed a fix to mid 2022. “I believe this bug is being handled inappropriately as it poses a serious risk to users and many months have passed without a comprehensive fix,” Spiniolas said at the time.

Spiniolas observed that the vulnerability is present within Apple’s mobile operating system as far back as iOS 14.7, however said he accepts it exists in all versions of iOS 14. As such, assuming you’ve been holding off on installing iOS 15, right now is an ideal opportunity to update your Apple gadgets.