{"id":98808,"date":"2023-09-12T23:59:53","date_gmt":"2023-09-13T06:59:53","guid":{"rendered":"https:\/\/www.intego.com\/mac-security-blog\/?p=98808"},"modified":"2023-09-25T16:19:36","modified_gmt":"2023-09-25T23:19:36","slug":"a-plethora-of-pegasus-patches-chrome-old-apple-oses-get-updates","status":"publish","type":"post","link":"https:\/\/www.intego.com\/mac-security-blog\/a-plethora-of-pegasus-patches-chrome-old-apple-oses-get-updates\/","title":{"rendered":"A plethora of Pegasus patches: Chrome, Firefox, old Apple OSes get updates"},"content":{"rendered":"<p><img loading=\"lazy\" class=\"aligncenter size-full wp-image-94528\" src=\"https:\/\/www.intego.com\/mac-security-blog\/wp-content\/uploads\/2021\/09\/Pegasus-Spyware-on-iPhone-iOS-NSO-Group-RFernandezPhone-NRaymondPeg-600x300-1.jpg\" alt=\"NSO Group Pegasus Spyware on iPhone, iOS (phone by R. Fernandez, Pegasus by N. Raymond)\" width=\"600\" height=\"300\" \/><\/p>\n<p>On Monday, September 11, Apple and Google released security updates to address major flaws. The patched vulnerabilities are apparently ones that the NSO Group&#8217;s Pegasus spyware may have actively exploited in the wild. On September 12, Mozilla released a corresponding security update for Firefox.<\/p>\n<h3>Apple releases iOS and iPadOS 15, macOS Monterey and Big Sur updates<\/h3>\n<p>The patches that Apple released on Monday are as follows:<\/p>\n<ul>\n<li><a href=\"https:\/\/support.apple.com\/kb\/HT213913\" target=\"_blank\" rel=\"noopener\">iOS 15.7.9 and iPadOS 15.7.9<\/a><\/li>\n<li><a href=\"https:\/\/support.apple.com\/kb\/HT213914\" target=\"_blank\" rel=\"noopener\">macOS Monterey 12.6.9<\/a><\/li>\n<li><a href=\"https:\/\/support.apple.com\/kb\/HT213915\" target=\"_blank\" rel=\"noopener\">macOS Big Sur 11.7.10<\/a><\/li>\n<\/ul>\n<p>For all of these, Apple patched the same ImageIO flaw (CVE-2023-41064) that it had <a href=\"https:\/\/www.intego.com\/mac-security-blog\/apple-patches-2-actively-exploited-vulns-in-macos-ventura-ios-16-watchos-9\/\">fixed<\/a> in macOS Ventura, iOS 16, and iPadOS 16 last Thursday, September 7.<\/p>\n<p>Notably, last week Apple also patched a Wallet vulnerability (CVE-2023-41061) for iOS 16, iPadOS 16, and watchOS 9. For whatever reason, Apple did not address this flaw for iOS 15, iPadOS 15, and watchOS 8 today.<\/p>\n<blockquote class=\"wp-embedded-content\" data-secret=\"ajEQ2juKbr\"><p><a href=\"https:\/\/www.intego.com\/mac-security-blog\/apple-patches-2-actively-exploited-vulns-in-macos-ventura-ios-16-watchos-9\/\">Apple patches 2 actively exploited vulns in macOS Ventura, iOS 16, watchOS 9<\/a><\/p><\/blockquote>\n<p><iframe class=\"wp-embedded-content\" sandbox=\"allow-scripts\" security=\"restricted\" style=\"position: absolute; clip: rect(1px, 1px, 1px, 1px);\" title=\"&#8220;Apple patches 2 actively exploited vulns in macOS Ventura, iOS 16, watchOS 9&#8221; &#8212; The Mac Security Blog\" src=\"https:\/\/www.intego.com\/mac-security-blog\/apple-patches-2-actively-exploited-vulns-in-macos-ventura-ios-16-watchos-9\/embed\/#?secret=ajEQ2juKbr\" data-secret=\"ajEQ2juKbr\" width=\"500\" height=\"282\" frameborder=\"0\" marginwidth=\"0\" marginheight=\"0\" scrolling=\"no\"><\/iframe><\/p>\n<h3>Google patches a different Pegasus-exploited vulnerability<\/h3>\n<p>Also on Monday, Google released a security updated for its popular Chrome browser. Google Chrome version 116.0.5845.187 addresses CVE-2023-4863, a heap buffer overflow in WebP. Apple and The Citizen Lab reported it to Google on September 6.<\/p>\n<p>Google said that it &#8220;is aware that an exploit for CVE-2023-4863 exists in the wild.&#8221;<\/p>\n<p>The Pegasus spyware likely leveraged this vulnerability as well, given who reported it and when.<\/p>\n<p>As of Monday evening, updates did not appear to be available to address CVE-2023-4863 for other Chromium-based browsers. The most popular of these are <strong>Microsoft Edge, Brave, Vivaldi, and Opera<\/strong>. Be sure to check for updates for these browsers in the coming days and weeks.<\/p>\n<p>You&#8217;ll also want to check for updates to apps that leverage the <a href=\"https:\/\/www.intego.com\/mac-security-blog\/chromium-vulnerabilities-threaten-electron-app-security\/\">Electron framework<\/a> or the Chromium Embedded Framework over the coming weeks. Such apps, if they remain unpatched, can put you at risk.<\/p>\n<h3>Mozilla patches the same vulnerability in Firefox as Chrome<\/h3>\n<p><strong>Update:<\/strong> On Tuesday, September 12, <a href=\"https:\/\/www.mozilla.org\/en-US\/security\/advisories\/mfsa2023-40\/\" target=\"_blank\" rel=\"noopener\">Mozilla released updates for Firefox<\/a> (and Thunderbird, Mozilla&#8217;s e-mail app) to address the same vulnerability as Chrome. Interestingly, Mozilla used the same CVE number. This seems to imply that the vulnerability can be exploited in Firefox in the same way as Chromium-based browsers.<\/p>\n<p>To ensure the patch is applied, verify that you&#8217;re running one of the following versions, or later: Firefox 17.0.1, Firefox ESR 115.2.1, Firefox ESR 102.15.1, Thunderbird 115.2.2, or Thunderbird 102.15.1.<\/p>\n<h3 id=\"exploremore\">How can I learn more?<\/h3>\n<p><a href=\"https:\/\/www.intego.com\/mac-security-blog\/wp-content\/uploads\/2021\/04\/intego-podcast-artwork-400.jpg\" target=\"_blank\" rel=\"noopener noreferrer\"><img class=\"alignleft\" src=\"https:\/\/www.intego.com\/mac-security-blog\/wp-content\/uploads\/2021\/04\/intego-podcast-artwork-400.jpg\" alt=\"\" width=\"80\" \/><\/a>Each week on the <a href=\"https:\/\/podcast.intego.com\/\" target=\"_blank\" rel=\"noopener\"><strong>Intego Mac Podcast<\/strong><\/a>, Intego&#8217;s Mac security experts discuss the latest Apple news, security and privacy stories, and offer practical advice on getting the most out of your Apple devices. Be sure to <a href=\"https:\/\/podcasts.apple.com\/us\/podcast\/intego-mac-podcast\/id1293834627\" rel=\"noopener\"><strong>follow the podcast<\/strong><\/a> to make sure you don\u2019t miss any episodes.<\/p>\n<p>You can also subscribe to our <a href=\"https:\/\/www.intego.com\/mac-security-blog\/mac-security-newsletter\/\"><strong>e-mail newsletter<\/strong><\/a> and keep an eye here on <a href=\"https:\/\/www.intego.com\/mac-security-blog\"><strong>The Mac Security Blog<\/strong><\/a> for the latest Apple security and privacy news. And don&#8217;t forget to follow Intego on your favorite social media channels: <a href=\"https:\/\/twitter.com\/IntegoSecurity\" target=\"_blank\" rel=\"noopener\"><img style=\"border-width: 1px; border-style: solid; border-color: rgba(255, 255, 255, 0.2); border-radius: 8px;\" title=\"Follow Intego on Twitter\" src=\"https:\/\/www.intego.com\/mac-security-blog\/wp-content\/uploads\/2021\/10\/Twitter-logo-icon-64.png\" alt=\"Follow Intego on Twitter\" width=\"16\" \/><\/a>\u00a0<a href=\"https:\/\/www.facebook.com\/Intego\" target=\"_blank\" rel=\"noopener\"><img style=\"border-width: 1px; border-style: solid; border-color: rgba(255, 255, 255, 0.2); border-radius: 8px;\" title=\"Follow Intego on Facebook\" src=\"https:\/\/www.intego.com\/mac-security-blog\/wp-content\/uploads\/2021\/10\/Facebook-logo-icon-64.png\" alt=\"Follow Intego on Facebook\" width=\"16\" \/><\/a>\u00a0<a href=\"https:\/\/www.youtube.com\/user\/IntegoVideo?sub_confirmation=1\" target=\"_blank\" rel=\"noopener\"><img style=\"border-width: 1px; border-style: solid; border-color: rgba(0, 0, 0, 0.2); border-radius: 8px;\" title=\"Follow Intego on YouTube\" src=\"https:\/\/www.intego.com\/mac-security-blog\/wp-content\/uploads\/2021\/10\/YouTube-logo-icon-64.png\" alt=\"Follow Intego on YouTube\" width=\"16\" \/><\/a>\u00a0<a href=\"https:\/\/www.pinterest.com\/intego\/\" target=\"_blank\" rel=\"noopener\"><img style=\"border-width: 1px; border-style: solid; border-color: rgba(0, 0, 0, 0.2); border-radius: 8px;\" title=\"Follow Intego on Pinterest\" src=\"https:\/\/www.intego.com\/mac-security-blog\/wp-content\/uploads\/2021\/10\/Pinterest-logo-icon-64.png\" alt=\"Follow Intego on Pinterest\" width=\"16\" \/><\/a>\u00a0<a href=\"https:\/\/www.linkedin.com\/company\/intego\" target=\"_blank\" rel=\"noopener\"><img style=\"border-width: 1px; border-style: solid; border-color: rgba(255, 255, 255, 0.2); border-radius: 8px;\" title=\"Follow Intego on LinkedIn\" src=\"https:\/\/www.intego.com\/mac-security-blog\/wp-content\/uploads\/2021\/10\/LinkedIn-logo-icon-64.png\" alt=\"Follow Intego on LinkedIn\" width=\"16\" \/><\/a>\u00a0<a href=\"https:\/\/www.instagram.com\/intego_security\/\" target=\"_blank\" rel=\"noopener\"><img style=\"border-width: 1px; border-style: solid; border-color: rgba(255, 255, 255, 0.2); border-radius: 8px;\" title=\"Follow Intego on Instagram\" src=\"https:\/\/www.intego.com\/mac-security-blog\/wp-content\/uploads\/2021\/10\/Instagram-logo-icon-64.png\" alt=\"Follow Intego on Instagram\" width=\"16\" \/><\/a>\u00a0<a href=\"https:\/\/podcasts.apple.com\/us\/podcast\/intego-mac-podcast\/id1293834627\" target=\"_blank\" rel=\"noopener\"><img style=\"border-width: 1px; border-style: solid; border-color: rgba(255, 255, 255, 0.2); border-radius: 8px;\" title=\"Follow the Intego Mac Podcast on Apple Podcasts\" src=\"https:\/\/www.intego.com\/mac-security-blog\/wp-content\/uploads\/2017\/10\/ios9-podcasts-app-tile.png\" alt=\"Follow the Intego Mac Podcast on Apple Podcasts\" width=\"16\" \/><\/a><\/p>\n<p><span style=\"font-size: x-small;\">Image credits: iPhone by <a href=\"https:\/\/commons.wikimedia.org\/wiki\/File:IPhone_X_vector.svg\" target=\"_blank\" rel=\"noopener\">Rafael Fernandez<\/a> (<a href=\"https:\/\/creativecommons.org\/licenses\/by-sa\/4.0\/deed.en\" target=\"_blank\" rel=\"noopener\">CC BY-SA 4.0<\/a>); Pegasus by <a href=\"https:\/\/www.flickr.com\/photos\/80497449@N04\/8679257947\" target=\"_blank\" rel=\"noopener\">Nicolas Raymond<\/a> (<a href=\"https:\/\/creativecommons.org\/licenses\/by\/2.0\/\" target=\"_blank\" rel=\"noopener\">CC BY 2.0<\/a>); composition by Joshua Long, Intego (CC BY-SA 4.0).<\/span><\/p>\n","protected":false},"excerpt":{"rendered":"<p>On Monday, September 11, Apple and Google released security updates to address major flaws. The patched vulnerabilities are apparently ones that the NSO Group&#8217;s Pegasus spyware may have actively exploited in the wild. On September 12, Mozilla released a corresponding security update for Firefox. Apple releases iOS and iPadOS 15, macOS Monterey and Big Sur [&hellip;]<\/p>\n","protected":false},"author":14,"featured_media":94527,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"spay_email":"","jetpack_publicize_message":"","jetpack_is_tweetstorm":false},"categories":[13],"tags":[38,173,4589,4618,4643,3070],"yoast_head":"<!-- This site is optimized with the Yoast SEO plugin v17.4 - https:\/\/yoast.com\/wordpress\/plugins\/seo\/ -->\n<meta name=\"description\" content=\"On Monday, September 11, Apple and Google released security updates to address major flaws. The patched vulnerabilities are apparently ones that the NSO\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/www.intego.com\/mac-security-blog\/a-plethora-of-pegasus-patches-chrome-old-apple-oses-get-updates\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"A plethora of Pegasus patches: Chrome, Firefox, old Apple OSes get updates - The Mac Security Blog\" \/>\n<meta property=\"og:description\" content=\"On Monday, September 11, Apple and Google released security updates to address major flaws. The patched vulnerabilities are apparently ones that the NSO\" \/>\n<meta property=\"og:url\" content=\"https:\/\/www.intego.com\/mac-security-blog\/a-plethora-of-pegasus-patches-chrome-old-apple-oses-get-updates\/\" \/>\n<meta property=\"og:site_name\" content=\"The Mac Security Blog\" \/>\n<meta property=\"article:author\" content=\"https:\/\/www.facebook.com\/JoshLong\" \/>\n<meta property=\"article:published_time\" content=\"2023-09-13T06:59:53+00:00\" \/>\n<meta property=\"article:modified_time\" content=\"2023-09-25T23:19:36+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/www.intego.com\/mac-security-blog\/wp-content\/uploads\/2021\/09\/Pegasus-Spyware-on-iPhone-iOS-NSO-Group-RFernandezPhone-NRaymondPeg-400x260-1.jpg\" \/>\n\t<meta property=\"og:image:width\" content=\"400\" \/>\n\t<meta property=\"og:image:height\" content=\"260\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:creator\" content=\"@theJoshMeister\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"Joshua Long\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"4 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"Organization\",\"@id\":\"https:\/\/www.intego.com\/mac-security-blog\/#organization\",\"name\":\"Intego\",\"url\":\"https:\/\/www.intego.com\/mac-security-blog\/\",\"sameAs\":[],\"logo\":{\"@type\":\"ImageObject\",\"@id\":\"https:\/\/www.intego.com\/mac-security-blog\/#logo\",\"inLanguage\":\"en-US\",\"url\":\"https:\/\/www.intego.com\/mac-security-blog\/wp-content\/uploads\/2022\/10\/intego-organization-logo-for-google-knowledge-graph-875x875-1.png\",\"contentUrl\":\"https:\/\/www.intego.com\/mac-security-blog\/wp-content\/uploads\/2022\/10\/intego-organization-logo-for-google-knowledge-graph-875x875-1.png\",\"width\":875,\"height\":875,\"caption\":\"Intego\"},\"image\":{\"@id\":\"https:\/\/www.intego.com\/mac-security-blog\/#logo\"}},{\"@type\":\"WebSite\",\"@id\":\"https:\/\/www.intego.com\/mac-security-blog\/#website\",\"url\":\"https:\/\/www.intego.com\/mac-security-blog\/\",\"name\":\"The Mac Security Blog\",\"description\":\"Keep Macs safe from the dangers of the Internet\",\"publisher\":{\"@id\":\"https:\/\/www.intego.com\/mac-security-blog\/#organization\"},\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\/\/www.intego.com\/mac-security-blog\/?s={search_term_string}\"},\"query-input\":\"required name=search_term_string\"}],\"inLanguage\":\"en-US\"},{\"@type\":\"ImageObject\",\"@id\":\"https:\/\/www.intego.com\/mac-security-blog\/a-plethora-of-pegasus-patches-chrome-old-apple-oses-get-updates\/#primaryimage\",\"inLanguage\":\"en-US\",\"url\":\"https:\/\/www.intego.com\/mac-security-blog\/wp-content\/uploads\/2021\/09\/Pegasus-Spyware-on-iPhone-iOS-NSO-Group-RFernandezPhone-NRaymondPeg-400x260-1.jpg\",\"contentUrl\":\"https:\/\/www.intego.com\/mac-security-blog\/wp-content\/uploads\/2021\/09\/Pegasus-Spyware-on-iPhone-iOS-NSO-Group-RFernandezPhone-NRaymondPeg-400x260-1.jpg\",\"width\":400,\"height\":260,\"caption\":\"NSO Group Pegasus Spyware on iPhone, iOS (phone by R. Fernandez, Pegasus by N. Raymond)\"},{\"@type\":\"WebPage\",\"@id\":\"https:\/\/www.intego.com\/mac-security-blog\/a-plethora-of-pegasus-patches-chrome-old-apple-oses-get-updates\/#webpage\",\"url\":\"https:\/\/www.intego.com\/mac-security-blog\/a-plethora-of-pegasus-patches-chrome-old-apple-oses-get-updates\/\",\"name\":\"A plethora of Pegasus patches: Chrome, Firefox, old Apple OSes get updates - The Mac Security Blog\",\"isPartOf\":{\"@id\":\"https:\/\/www.intego.com\/mac-security-blog\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\/\/www.intego.com\/mac-security-blog\/a-plethora-of-pegasus-patches-chrome-old-apple-oses-get-updates\/#primaryimage\"},\"datePublished\":\"2023-09-13T06:59:53+00:00\",\"dateModified\":\"2023-09-25T23:19:36+00:00\",\"description\":\"On Monday, September 11, Apple and Google released security updates to address major flaws. The patched vulnerabilities are apparently ones that the NSO\",\"breadcrumb\":{\"@id\":\"https:\/\/www.intego.com\/mac-security-blog\/a-plethora-of-pegasus-patches-chrome-old-apple-oses-get-updates\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\/\/www.intego.com\/mac-security-blog\/a-plethora-of-pegasus-patches-chrome-old-apple-oses-get-updates\/\"]}]},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\/\/www.intego.com\/mac-security-blog\/a-plethora-of-pegasus-patches-chrome-old-apple-oses-get-updates\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\/\/www.intego.com\/mac-security-blog\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"A plethora of Pegasus patches: Chrome, Firefox, old Apple OSes get updates\"}]},{\"@type\":\"Article\",\"@id\":\"https:\/\/www.intego.com\/mac-security-blog\/a-plethora-of-pegasus-patches-chrome-old-apple-oses-get-updates\/#article\",\"isPartOf\":{\"@id\":\"https:\/\/www.intego.com\/mac-security-blog\/a-plethora-of-pegasus-patches-chrome-old-apple-oses-get-updates\/#webpage\"},\"author\":{\"@id\":\"https:\/\/www.intego.com\/mac-security-blog\/#\/schema\/person\/dcf592275ba6edde8d20f1e60029c6b1\"},\"headline\":\"A plethora of Pegasus patches: Chrome, Firefox, old Apple OSes get updates\",\"datePublished\":\"2023-09-13T06:59:53+00:00\",\"dateModified\":\"2023-09-25T23:19:36+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\/\/www.intego.com\/mac-security-blog\/a-plethora-of-pegasus-patches-chrome-old-apple-oses-get-updates\/#webpage\"},\"wordCount\":493,\"commentCount\":0,\"publisher\":{\"@id\":\"https:\/\/www.intego.com\/mac-security-blog\/#organization\"},\"image\":{\"@id\":\"https:\/\/www.intego.com\/mac-security-blog\/a-plethora-of-pegasus-patches-chrome-old-apple-oses-get-updates\/#primaryimage\"},\"thumbnailUrl\":\"https:\/\/www.intego.com\/mac-security-blog\/wp-content\/uploads\/2021\/09\/Pegasus-Spyware-on-iPhone-iOS-NSO-Group-RFernandezPhone-NRaymondPeg-400x260-1.jpg\",\"keywords\":[\"Chrome\",\"Chrome Browser\",\"macOS Big Sur\",\"macOS Monterey\",\"macOS Ventura\",\"Pegasus\"],\"articleSection\":[\"Security &amp; Privacy\"],\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"CommentAction\",\"name\":\"Comment\",\"target\":[\"https:\/\/www.intego.com\/mac-security-blog\/a-plethora-of-pegasus-patches-chrome-old-apple-oses-get-updates\/#respond\"]}]},{\"@type\":\"Person\",\"@id\":\"https:\/\/www.intego.com\/mac-security-blog\/#\/schema\/person\/dcf592275ba6edde8d20f1e60029c6b1\",\"name\":\"Joshua Long\",\"image\":{\"@type\":\"ImageObject\",\"@id\":\"https:\/\/www.intego.com\/mac-security-blog\/#personlogo\",\"inLanguage\":\"en-US\",\"url\":\"https:\/\/secure.gravatar.com\/avatar\/5ad29f4111ce14911abaa98cbbcdea42?s=96&d=mm&r=g\",\"contentUrl\":\"https:\/\/secure.gravatar.com\/avatar\/5ad29f4111ce14911abaa98cbbcdea42?s=96&d=mm&r=g\",\"caption\":\"Joshua Long\"},\"description\":\"Joshua Long (@theJoshMeister), formerly Intego\\u2019s Chief Security Analyst, is a renowned security researcher and writer, and an award-winning public speaker. Josh has a master\\u2019s degree in IT concentrating in Internet Security and has taken doctorate-level coursework in Information Security. Apple has publicly acknowledged Josh for discovering an Apple\\u00a0ID authentication vulnerability. Josh has conducted cybersecurity research for well over 25 years, which is often featured by major news outlets worldwide. Keep up with Josh via X\/Twitter, LinkedIn, Facebook, Instagram, YouTube, Patreon, Mastodon, the JoshMeister on Security, and more. \\u2014\",\"sameAs\":[\"https:\/\/security.thejoshmeister.com\",\"https:\/\/www.facebook.com\/JoshLong\",\"https:\/\/www.instagram.com\/thejoshmeister\/\",\"https:\/\/www.linkedin.com\/in\/thejoshmeister\",\"https:\/\/www.pinterest.com\/thejoshmeister\/\",\"https:\/\/twitter.com\/theJoshMeister\",\"https:\/\/www.youtube.com\/@theJoshMeister\"],\"url\":\"https:\/\/www.intego.com\/mac-security-blog\/author\/joshlong\/\"}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"description":"On Monday, September 11, Apple and Google released security updates to address major flaws. The patched vulnerabilities are apparently ones that the NSO","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/www.intego.com\/mac-security-blog\/a-plethora-of-pegasus-patches-chrome-old-apple-oses-get-updates\/","og_locale":"en_US","og_type":"article","og_title":"A plethora of Pegasus patches: Chrome, Firefox, old Apple OSes get updates - The Mac Security Blog","og_description":"On Monday, September 11, Apple and Google released security updates to address major flaws. The patched vulnerabilities are apparently ones that the NSO","og_url":"https:\/\/www.intego.com\/mac-security-blog\/a-plethora-of-pegasus-patches-chrome-old-apple-oses-get-updates\/","og_site_name":"The Mac Security Blog","article_author":"https:\/\/www.facebook.com\/JoshLong","article_published_time":"2023-09-13T06:59:53+00:00","article_modified_time":"2023-09-25T23:19:36+00:00","og_image":[{"width":400,"height":260,"url":"https:\/\/www.intego.com\/mac-security-blog\/wp-content\/uploads\/2021\/09\/Pegasus-Spyware-on-iPhone-iOS-NSO-Group-RFernandezPhone-NRaymondPeg-400x260-1.jpg","type":"image\/jpeg"}],"twitter_card":"summary_large_image","twitter_creator":"@theJoshMeister","twitter_misc":{"Written by":"Joshua Long","Est. reading time":"4 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Organization","@id":"https:\/\/www.intego.com\/mac-security-blog\/#organization","name":"Intego","url":"https:\/\/www.intego.com\/mac-security-blog\/","sameAs":[],"logo":{"@type":"ImageObject","@id":"https:\/\/www.intego.com\/mac-security-blog\/#logo","inLanguage":"en-US","url":"https:\/\/www.intego.com\/mac-security-blog\/wp-content\/uploads\/2022\/10\/intego-organization-logo-for-google-knowledge-graph-875x875-1.png","contentUrl":"https:\/\/www.intego.com\/mac-security-blog\/wp-content\/uploads\/2022\/10\/intego-organization-logo-for-google-knowledge-graph-875x875-1.png","width":875,"height":875,"caption":"Intego"},"image":{"@id":"https:\/\/www.intego.com\/mac-security-blog\/#logo"}},{"@type":"WebSite","@id":"https:\/\/www.intego.com\/mac-security-blog\/#website","url":"https:\/\/www.intego.com\/mac-security-blog\/","name":"The Mac Security Blog","description":"Keep Macs safe from the dangers of the Internet","publisher":{"@id":"https:\/\/www.intego.com\/mac-security-blog\/#organization"},"potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/www.intego.com\/mac-security-blog\/?s={search_term_string}"},"query-input":"required name=search_term_string"}],"inLanguage":"en-US"},{"@type":"ImageObject","@id":"https:\/\/www.intego.com\/mac-security-blog\/a-plethora-of-pegasus-patches-chrome-old-apple-oses-get-updates\/#primaryimage","inLanguage":"en-US","url":"https:\/\/www.intego.com\/mac-security-blog\/wp-content\/uploads\/2021\/09\/Pegasus-Spyware-on-iPhone-iOS-NSO-Group-RFernandezPhone-NRaymondPeg-400x260-1.jpg","contentUrl":"https:\/\/www.intego.com\/mac-security-blog\/wp-content\/uploads\/2021\/09\/Pegasus-Spyware-on-iPhone-iOS-NSO-Group-RFernandezPhone-NRaymondPeg-400x260-1.jpg","width":400,"height":260,"caption":"NSO Group Pegasus Spyware on iPhone, iOS (phone by R. Fernandez, Pegasus by N. Raymond)"},{"@type":"WebPage","@id":"https:\/\/www.intego.com\/mac-security-blog\/a-plethora-of-pegasus-patches-chrome-old-apple-oses-get-updates\/#webpage","url":"https:\/\/www.intego.com\/mac-security-blog\/a-plethora-of-pegasus-patches-chrome-old-apple-oses-get-updates\/","name":"A plethora of Pegasus patches: Chrome, Firefox, old Apple OSes get updates - The Mac Security Blog","isPartOf":{"@id":"https:\/\/www.intego.com\/mac-security-blog\/#website"},"primaryImageOfPage":{"@id":"https:\/\/www.intego.com\/mac-security-blog\/a-plethora-of-pegasus-patches-chrome-old-apple-oses-get-updates\/#primaryimage"},"datePublished":"2023-09-13T06:59:53+00:00","dateModified":"2023-09-25T23:19:36+00:00","description":"On Monday, September 11, Apple and Google released security updates to address major flaws. The patched vulnerabilities are apparently ones that the NSO","breadcrumb":{"@id":"https:\/\/www.intego.com\/mac-security-blog\/a-plethora-of-pegasus-patches-chrome-old-apple-oses-get-updates\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/www.intego.com\/mac-security-blog\/a-plethora-of-pegasus-patches-chrome-old-apple-oses-get-updates\/"]}]},{"@type":"BreadcrumbList","@id":"https:\/\/www.intego.com\/mac-security-blog\/a-plethora-of-pegasus-patches-chrome-old-apple-oses-get-updates\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/www.intego.com\/mac-security-blog\/"},{"@type":"ListItem","position":2,"name":"A plethora of Pegasus patches: Chrome, Firefox, old Apple OSes get updates"}]},{"@type":"Article","@id":"https:\/\/www.intego.com\/mac-security-blog\/a-plethora-of-pegasus-patches-chrome-old-apple-oses-get-updates\/#article","isPartOf":{"@id":"https:\/\/www.intego.com\/mac-security-blog\/a-plethora-of-pegasus-patches-chrome-old-apple-oses-get-updates\/#webpage"},"author":{"@id":"https:\/\/www.intego.com\/mac-security-blog\/#\/schema\/person\/dcf592275ba6edde8d20f1e60029c6b1"},"headline":"A plethora of Pegasus patches: Chrome, Firefox, old Apple OSes get updates","datePublished":"2023-09-13T06:59:53+00:00","dateModified":"2023-09-25T23:19:36+00:00","mainEntityOfPage":{"@id":"https:\/\/www.intego.com\/mac-security-blog\/a-plethora-of-pegasus-patches-chrome-old-apple-oses-get-updates\/#webpage"},"wordCount":493,"commentCount":0,"publisher":{"@id":"https:\/\/www.intego.com\/mac-security-blog\/#organization"},"image":{"@id":"https:\/\/www.intego.com\/mac-security-blog\/a-plethora-of-pegasus-patches-chrome-old-apple-oses-get-updates\/#primaryimage"},"thumbnailUrl":"https:\/\/www.intego.com\/mac-security-blog\/wp-content\/uploads\/2021\/09\/Pegasus-Spyware-on-iPhone-iOS-NSO-Group-RFernandezPhone-NRaymondPeg-400x260-1.jpg","keywords":["Chrome","Chrome Browser","macOS Big Sur","macOS Monterey","macOS Ventura","Pegasus"],"articleSection":["Security &amp; Privacy"],"inLanguage":"en-US","potentialAction":[{"@type":"CommentAction","name":"Comment","target":["https:\/\/www.intego.com\/mac-security-blog\/a-plethora-of-pegasus-patches-chrome-old-apple-oses-get-updates\/#respond"]}]},{"@type":"Person","@id":"https:\/\/www.intego.com\/mac-security-blog\/#\/schema\/person\/dcf592275ba6edde8d20f1e60029c6b1","name":"Joshua Long","image":{"@type":"ImageObject","@id":"https:\/\/www.intego.com\/mac-security-blog\/#personlogo","inLanguage":"en-US","url":"https:\/\/secure.gravatar.com\/avatar\/5ad29f4111ce14911abaa98cbbcdea42?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/5ad29f4111ce14911abaa98cbbcdea42?s=96&d=mm&r=g","caption":"Joshua Long"},"description":"Joshua Long (@theJoshMeister), formerly Intego\u2019s Chief Security Analyst, is a renowned security researcher and writer, and an award-winning public speaker. Josh has a master\u2019s degree in IT concentrating in Internet Security and has taken doctorate-level coursework in Information Security. Apple has publicly acknowledged Josh for discovering an Apple\u00a0ID authentication vulnerability. Josh has conducted cybersecurity research for well over 25 years, which is often featured by major news outlets worldwide. Keep up with Josh via X\/Twitter, LinkedIn, Facebook, Instagram, YouTube, Patreon, Mastodon, the JoshMeister on Security, and more. \u2014","sameAs":["https:\/\/security.thejoshmeister.com","https:\/\/www.facebook.com\/JoshLong","https:\/\/www.instagram.com\/thejoshmeister\/","https:\/\/www.linkedin.com\/in\/thejoshmeister","https:\/\/www.pinterest.com\/thejoshmeister\/","https:\/\/twitter.com\/theJoshMeister","https:\/\/www.youtube.com\/@theJoshMeister"],"url":"https:\/\/www.intego.com\/mac-security-blog\/author\/joshlong\/"}]}},"jetpack_featured_media_url":"https:\/\/www.intego.com\/mac-security-blog\/wp-content\/uploads\/2021\/09\/Pegasus-Spyware-on-iPhone-iOS-NSO-Group-RFernandezPhone-NRaymondPeg-400x260-1.jpg","jetpack_publicize_connections":[],"jetpack_sharing_enabled":true,"jetpack_shortlink":"https:\/\/wp.me\/p4VAYd-pHG","amp_enabled":true,"_links":{"self":[{"href":"https:\/\/origin.intego.com\/mac-security-blog\/wp-json\/wp\/v2\/posts\/98808"}],"collection":[{"href":"https:\/\/origin.intego.com\/mac-security-blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/origin.intego.com\/mac-security-blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/origin.intego.com\/mac-security-blog\/wp-json\/wp\/v2\/users\/14"}],"replies":[{"embeddable":true,"href":"https:\/\/origin.intego.com\/mac-security-blog\/wp-json\/wp\/v2\/comments?post=98808"}],"version-history":[{"count":4,"href":"https:\/\/origin.intego.com\/mac-security-blog\/wp-json\/wp\/v2\/posts\/98808\/revisions"}],"predecessor-version":[{"id":98959,"href":"https:\/\/origin.intego.com\/mac-security-blog\/wp-json\/wp\/v2\/posts\/98808\/revisions\/98959"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/origin.intego.com\/mac-security-blog\/wp-json\/wp\/v2\/media\/94527"}],"wp:attachment":[{"href":"https:\/\/origin.intego.com\/mac-security-blog\/wp-json\/wp\/v2\/media?parent=98808"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/origin.intego.com\/mac-security-blog\/wp-json\/wp\/v2\/categories?post=98808"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/origin.intego.com\/mac-security-blog\/wp-json\/wp\/v2\/tags?post=98808"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}