X

Apple releases OS X patch for spyware exploit

The desktop vulnerability is the same found last week targeting iOS on a prominent Arab activist's iPhone.

Steven Musil Night Editor / News
Steven Musil is the night news editor at CNET News. He's been hooked on tech since learning BASIC in the late '70s. When not cleaning up after his daughter and son, Steven can be found pedaling around the San Francisco Bay Area. Before joining CNET in 2000, Steven spent 10 years at various Bay Area newspapers.
Expertise I have more than 30 years' experience in journalism in the heart of the Silicon Valley.
Steven Musil
screen-shot-2015-02-10-at-11-03-57-am.png

Apple has released a security update for its desktop operating system.

Dan Ackerman/CNET

Apple issued an urgent security update on Thursday for OS X and Safari after finding the same vulnerabilities in its desktop operating system that were discovered last week in its mobile operating system and that allow attackers to remotely take control of a device.

The patch for OS X 10.11.6 "El Capitan" and 10.10.5 "Yosemite" comes a week after internet security experts discovered that a prominent Arab activist's iPhone was being targeted by taking advantage of three previously unknown vulnerabilities in Apple's mobile software. Apple responded by releasing an updated version of iOS: version 9.3.5.

The same vulnerabilities showed up in OS X because the desktop and mobile versions of the Safari browser share much of the same code base.

In its advisory, Apple warned that visiting a "maliciously crafted website" through its Safari browser could allow hackers to execute arbitrary code on a victim's computer.