Apple rushes out software update to fix crypto vulnerability
Apple has issued an urgent software update to iOS and macOS users after discovering a vulnerability that could target cryptocurrency holders.
According to Kaspersky, Apple has issued urgent updates due to vulnerabilities in iOS and macOS devices. The security firm is urging Apple users to update their devices to iOS 16.4.1 and macOS 13.3.1.
Because of the security weakness, bad actors can “do almost anything,” even stealing crypto from targeted devices.
How are Apple devices vulnerable to crypto hacks?
Apple recognized two security threats, CVE-2023-28205 and CVE-2023-28206, a combination of which could allow exploiters to perform zero-click exploits. This is an attack where victims are taken to phishing websites and malware is automatically installed on their devices without interacting with the site.
After installing malware, attackers can control the device and run code without the need for the operating system’s core permissions. They can even access cryptocurrency wallets found on users’ devices.
Cryptophishing attacks on the rise
Phishing attacks are gradually becoming a favorite mode for cryptocurrency hackers to steal users’ funds. According to a Kaspersky report, cryptocurrency phishing grew by 40%, from 3,596,437 in 2021 to 5,040,520 detections in 2022.
In general, phishing websites are slightly different in spelling, which is difficult to spot for uninformed users. They trick victims into linking wallets and then siphon off their assets, including crypto-tokens and non-fungible tokens (NFTs).
Some bad actors also run Google Ads to display their phishing sites at the top of the search page. BeInCrypto reported that Google displayed a fake CoinMarketCap link above the original site in October.
Furthermore, according to a survey of 2,000 Americans, a third of respondents have been victims of crypto theft.
Therefore, users should take security measures such as diversifying funds in different wallets and safe storage of private keys. On top of that, users should thoroughly assess the authenticity before clicking on a link.
Do you have something to say about Apple device vulnerability or something else? Write to us or join the discussion on our Telegram channel. You can also catch us on TikTok, Facebook or Twitter.
For BeInCrypto’s latest Bitcoin (BTC) analysis, click here.
Disclaimer
In accordance with the guidelines of the Trust Project, BeInCrypto is committed to objective, transparent reporting. This news article aims to provide accurate, timely information. However, readers are advised to verify the facts independently and consult with a professional before making any decisions based on this content.