- Safari versions prior to 17.6
- iOS and iPadOS versions prior to 17.6
- iOS and iPadOS versions prior to 16.7.9
- macOS Sonoma versions prior to 14.6
- macOS Ventura versions prior to 13.6.8
- macOS Monterey versions prior to 12.7.6
- watchOS ersions prior to 10.6
- watchOS versions prior to tvOS 17.6
- visionOS versions prior to 1.3
- Apply the stable channel update provided by Apple to vulnerable systems immediately after appropriate testing.
- Apply the Principle of Least Privilege to all systems and services. Run all software as a non-privileged user (one without administrative privileges) to diminish the effects of a successful attack.
- Restrict use of certain websites, block downloads/attachments, block JavaScript, restrict browser extensions, etc.
- Use capabilities to detect and block conditions that may lead to or be indicative of a software exploit occurring.
- Block execution of code on a system through application control, and/or script blocking.
- Use capabilities to prevent suspicious behavior patterns from occurring on endpoint systems. This could include suspicious process, file, API call, etc. behavior.
