
Apple says its security flaw was fixed. Cyber analysts warn zero-click threats will persist
CBSN
Cybersecurity analysts are urging Apple users to immediately update the software of their phones, computers and watches after the company issued an emergency security patch on Monday to prevent hackers from gaining access to the devices without the users knowing.
In a new report, researchers at the University of Toronto's Citizen Lab said the NSO Group, an Israeli spyware company, used what is known as a "zero-click exploit" to access the phone of an unnamed Saudi activist. Researchers at Citizen Lab called the exploit "Forcedentry'' and said it has been in use since February. They also revealed that the NSO Group's flagship "Pegasus" spyware program was used to infect the activist's device.
"Whereas typical cyberattacks require a user to engage with a malicious piece of content - such as clicking on a rogue link - zero click exploits do not require any sort of interaction with devices' owners themselves," Lisa Plaggemier, interim executive director of the National Cyber Security Alliance, told CBS News. "This means it is virtually impossible for individuals to know if they have been compromised or not," she added.

Merryl Hoffman knew she was taking good care of her heart. The 63-year-old attorney didn't smoke or drink, and she was an avid hiker who used to run marathons and other distance races. In her 40s, she had been diagnosed with a leaky mitral valve and underwent surgery to repair it. Every year since, she has seen a cardiologist to check her heart and its function. The reports always came back clear.

FDA to "review the latest data" on mifepristone. What could it mean for access to the abortion pill?
Health and Human Services Secretary Robert F. Kennedy Jr. has asked Food and Drug Administration Commissioner Marty Makary "to review the latest data on mifepristone," raising questions about the drug commonly referred to as the abortion pill.