Main navigation

Your Crypto Is in Danger If You Don't Update Your iOS: Kaspersky's Warning

Wed, 04/19/2023 - 11:22
article image
Arman Shirinyan
Despite being relatively secure system, current iOS versions have some issues
Your Crypto Is in Danger If You Don't Update Your iOS: Kaspersky's Warning
Cover image via

Disclaimer: The opinions expressed by our writers are their own and do not represent the views of U.Today. The financial and market information provided on U.Today is intended for informational purposes only. U.Today is not liable for any financial losses incurred while trading cryptocurrencies. Conduct your own research by contacting financial experts before making any investment decisions. We believe that all content is accurate as of the date of publication, but certain offers mentioned may no longer be available.

Read U.TODAY on
Google News

Security flaws have been identified in iOS and macOS operating systems by Kaspersky, posing significant risks to users, including ones who hold digital assets in iOS wallets. One vulnerability allows cybercriminals to access confidential user data by intercepting network traffic, while another permits malware to evade Apple's security measures and gain root access.

Two distinct vulnerabilities have been detected. The first, dubbed CVE-2023-28205, relates to the WebKit engine, which underpins the Safari browser and other applications. This flaw enables attackers to execute arbitrary code on a device by directing users to a specially crafted malicious webpage.

Apple Fixes Crucial Bug That Could Lead to Cryptocurrency Theft

The second vulnerability, CVE-2023-28206, is found in the IOSurfaceAccelerator object, which can be exploited by attackers to execute code with system kernel permissions. By combining these two vulnerabilities, cybercriminals can infiltrate a device and subsequently escape the security sandbox, giving them near-complete control over the infected device.

Both desktop macOS operating systems and mobile platforms, including iOS, iPadOS, and tvOS, are affected by these vulnerabilities. Apple has released updates for various systems, including macOS 11, 12 and 13, iOS/iPadOS 15 and 16, and tvOS 16, to address the flaws.

The WebKit engine is the exclusive browser engine allowed on Apple's mobile operating systems. Regardless of the browser utilized on an iPhone, WebKit remains responsible for rendering web pages, effectively making all iOS browsers akin to Safari.

Additionally, WebKit is employed when web pages are opened within other applications. Sometimes, even if it does not appear to be a web page, WebKit is still involved in displaying it. Consequently, it is crucial to install Safari-related updates promptly, even for users who primarily rely on alternative browsers like Google Chrome or Mozilla Firefox.

article image
About the author

Arman Shirinyan is a trader, crypto enthusiast and SMM expert with more than four years of experience.

Arman strongly believes that cryptocurrencies and the blockchain will be of constant use in the future. Currently, he focuses on news, articles with deep analysis of crypto projects and technical analysis of cryptocurrency trading pairs.