The Indian Computer Response Team (CERT-In) has issued an advisory for iPhone users. The National Cyber Security Agency has disclosed a vulnerability in Apple iOS that could allow hackers to access Apple iPhones. “A vulnerability has been reported in Apple iOS that could allow an attacker to execute arbitrary code on a targeted system,” the CERT-In advisory said.
The vulnerability, it says, exists in Apple iOS because of a type confusion flaw in a WebKit component. This can easily be exploited by a hacker to lure victims into visiting a malicious website, which can result in severe financial and data loss.
Which devices are affected?
As per CERT-In advisory, apple ios Versions prior to 12.5.7 are affected by the vulnerability. Contains iphone 5S, iPhone 6, iPhone 6 Plus, iPad Air, iPad mini 2, iPad mini 3, and iPod touch (6th generation).
What should the user do?
CERT-In says that the vulnerability is being actively exploited against versions of iOS released prior to iOS 15.1. Therefore users are advised to apply appropriate software updates. Note that Apple has already released a security patch for iOS 12.5.7.
“Processing maliciously crafted web content could lead to arbitrary code execution. Apple is aware of a report that this issue can be actively exploited against versions of iOS released prior to iOS 15.1 ,” reads the company’s note accompanying the patch released on January 23, 2023.
Having said that it is recommended for existing users of iPhone 5s, iPhone 6, iPhone 6 Plus, iPad Air, iPad mini 2, iPad mini 3, and iPod Touch (6th generation) to upgrade to the latest model if They have ‘t. Or they can at least remove their sensitive, private data from these older devices to be safe.
catch all technology news And updates on Live Mint. download mint news app to receive daily market update & stay business News,