Matt Weston

**Name of the Vulnerable Software and Affected Versions** iOS versions prior to 8.4.1 **Description** The issue is related to errors in security settings of the WebKit component in the iOS operating system. It allows remote attackers to spoof clicks via a crafted web site that leverages tap events, potentially enabling an attacker to substitute URL link clicks. **Recommendations** For iOS versions prior to 8.4.1, update to version 8.4.1 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** Google Chrome versions prior to 42.0.2311.90 Opera (affected versions not specified) **Description** The issue is related to the incorrect handling of touch events by the browser when a user navigates through web pages. This can be exploited by a remote attacker using a specially crafted website that conducts a "tapjacking" attack, allowing the attacker to perform unintended UI actions. **Recommendations** For Google Chrome versions prior to 42.0.2311.90, update to version 42.0.2311.90 or later to resolve the issue. For Opera, at the moment, there is no information about a newer version that contains a fix for this vulnerability. As a temporary workaround, consider restricting access to websites that may conduct "tapjacking" attacks to minimize the risk of exploitation.