Tech Giants Rush to Fix Secret Security Flaws

Apple and Google recently had to quickly address some hidden security problems that were already being exploited by hackers in real-world attacks. Both companies described these attacks as quite advanced.

Apple's Updates

• Devices Affected: iPhones, iPads, and Macs
• Software Fixed: WebKit
• Details: Apple warned that these flaws were used in sophisticated attacks against specific individuals. However, they did not share many details about how these attacks worked.

Google's Updates

• Software Affected: Chrome browser
• Flaw Identified: CVE-2025-14174
• Details: This flaw allowed hackers to access parts of the system they should not have been able to reach. Google confirmed that the bug was being exploited in the wild.

Timeline and Collaboration

• Google's update followed Apple's by just a few days.
• Google later added more information to their update notes, indicating that both companies were addressing similar issues.
• Google thanked Apple's security team and their own Threat Analysis Group for identifying the flaw. This group typically tracks sophisticated hackers rather than everyday malware.

Ongoing Threats

• Apple has had to fix nine security flaws in 2025 that were being exploited.
• Google has had to fix eight Chrome flaws in 2025.
• This trend shows that hackers are increasingly targeting browsers and mobile devices.

Lack of Transparency

• Both companies did not share many technical details, making it difficult for regular users to understand the full extent of the problem.
• Despite this, it is clear that both companies are working hard to keep their users safe.