Apple and Google have released several software updates to protect against a hacking campaign targeting an unknown number of their users. On Wednesday, Google released patches for several security bugs in its Chrome browser, noting that one of the bugs was being actively exploited by hackers before the company had time to patch it. Unusually for Google, the company provided no further details at the time.

Google and Apple Detect Government-Sponsored Attacks

On Friday, Google updated its advisory, explaining that the critical bug was discovered by Apple’s security engineering team and Google’s Threat Analysis Group. The threat analysis team is known for tracking government hackers and mercenary spyware makers. This suggests the hacking campaign may have involved government-backed attackers. At the same time, Apple released security updates for several products, including iPhones, iPads, Macs, Vision Pro, Apple TV, Apple Watches, and its Safari browser.

Security Patches Against Zero-Day Exploits

Apple’s security advisory for iPhones and iPads reported that two bugs had been patched. Apple said it was aware the issues may have been exploited in an extremely sophisticated attack against specific targeted individuals who used affected devices before upgrading to iOS 26. This phrasing is Apple’s usual way of indicating that it knows some of its users were targeted by hackers exploiting zero-days, which are software flaws unknown to the makers at the time of the attack. These exploits are often used by government hackers with spyware made by organizations like NSO Group or Paragon Solutions, and targets often include journalists, dissidents, and human rights activists. Apple and Google did not immediately respond to requests for comment.

Tags: siguri kibernetike, zero-day, përditësime softuerike, sulme hakerësh, Google, Apple