Main navigation

Your Crypto Is in Danger If You Don't Update Your iOS: Kaspersky's Warning

Advertisement
Wed, 19/04/2023 - 11:22
Your Crypto Is in Danger If You Don't Update Your iOS: Kaspersky's Warning
Cover image via unsplash.com

Disclaimer: The opinions expressed by our writers are their own and do not represent the views of U.Today. The financial and market information provided on U.Today is intended for informational purposes only. U.Today is not liable for any financial losses incurred while trading cryptocurrencies. Conduct your own research by contacting financial experts before making any investment decisions. We believe that all content is accurate as of the date of publication, but certain offers mentioned may no longer be available.

Read U.TODAY on
Google News

Security flaws have been identified in iOS and macOS operating systems by Kaspersky, posing significant risks to users, including ones who hold digital assets in iOS wallets. One vulnerability allows cybercriminals to access confidential user data by intercepting network traffic, while another permits malware to evade Apple's security measures and gain root access.

Two distinct vulnerabilities have been detected. The first, dubbed CVE-2023-28205, relates to the WebKit engine, which underpins the Safari browser and other applications. This flaw enables attackers to execute arbitrary code on a device by directing users to a specially crafted malicious webpage.

Related

The second vulnerability, CVE-2023-28206, is found in the IOSurfaceAccelerator object, which can be exploited by attackers to execute code with system kernel permissions. By combining these two vulnerabilities, cybercriminals can infiltrate a device and subsequently escape the security sandbox, giving them near-complete control over the infected device.

Advertisement

Both desktop macOS operating systems and mobile platforms, including iOS, iPadOS, and tvOS, are affected by these vulnerabilities. Apple has released updates for various systems, including macOS 11, 12 and 13, iOS/iPadOS 15 and 16, and tvOS 16, to address the flaws.

The WebKit engine is the exclusive browser engine allowed on Apple's mobile operating systems. Regardless of the browser utilized on an iPhone, WebKit remains responsible for rendering web pages, effectively making all iOS browsers akin to Safari.

Additionally, WebKit is employed when web pages are opened within other applications. Sometimes, even if it does not appear to be a web page, WebKit is still involved in displaying it. Consequently, it is crucial to install Safari-related updates promptly, even for users who primarily rely on alternative browsers like Google Chrome or Mozilla Firefox.

Related articles

Advertisement
TopCryptoNewsinYourMailbox
TopCryptoNewsinYourMailbox
Advertisement
Advertisement

Recommended articles

Latest Press Releases

Our social media
There's a lot to see there, too

Popular articles

Advertisement
AD