iOS 18.5 and iPadOS 18.5
Juli Clover (iOS/iPadOS release notes, security, enterprise, no developer):
iOS 18.5 and iPadOS 18.5 are on the smaller side, featuring a limited number of new features. There’s an update to Screen Time that lets parents know when a Screen Time passcode is used on a child’s device, and there is support for carrier-provided satellite features on iPhone 13 models.
According to Apple’s security support document for iOS 18.5, there’s a fix for a vulnerability with the C1 modem. Apple says that it addressed a baseband security flaw that could allow an attacker “in a privileged network position” to intercept network traffic. Basically, a hacker that had access to cellular network infrastructure could potentially exploit the vulnerability for surveillance or to employ a man-in-the-middle attack.
Would really like being able to talk to that Apple engineer who clearly believes that every minor iOS update is a good opportunity to nag iPhone users who have NOT signed up for Apple Pay with a red badge that it takes a very special (and stupid) UI dance to get rid of.
Previously:
4 Comments RSS · Twitter · Mastodon
As usual it's the engineer that gets blamed, but I guarantee you no one actually writing code decided that this would be a good time to nag the user again. You can ultimately thank Tim and Craig for that.
Also the patch for the C1 gets me thinking. For a long time, the baseband has quietly been a good target of sophisticated attack. It would be interesting to know what security issues it both solves and creates by moving away from what presumably is a very standardized Qualcomm install base.
> that Apple engineer who clearly believes that every minor iOS update is a good opportunity to nag iPhone users
Same with the dang Siri. Every single minor iOS update triggers that (intentionally disabled) Siri thing setup, from the beginning.
"As usual it's the engineer that gets blamed"
Yeah, I can guarantee that no engineer made this decision.
