If you use an Apple mobile phone, watch or other device, you are at risk. Government systems in India have identified many flaws in these products, which allow cyber attackers to take control of your device In this regard, the Ministry of Electronics and Information Technology of the government has warned the users of such products.
Cyber attackers can take advantage of certification issues in security tools, kernel issues, and deficiencies in WebKit tools.
According to reports, the Indian Computer Emergency Response Team working under the Ministry of Electronics and Information Technology said that a vulnerability is being reported in the WebKit browser engine used by Safari and other browsers. It also comes on Apple’s iPhone and watch. CERT-IN said in an official statement, ‘These vulnerabilities exist in Apple products due to certification issues in security tools, issues in the kernel and deficiencies in WebKit tools. An attacker could exploit these vulnerabilities by sending specially crafted requests.
List of affected devices included
- Apple iOS version earlier than 16.7 and iPadOS version earlier than 16.7
- Apple macOS Moneterey before version 12.7
- Apple watchOS version 9.6.3 or earlier
- Apple iOS version earlier than 17.0.1 and iPadOS version earlier than 17.0.1
- Apple Safari version before 16.6.1
- Apple macOS Ventura version 13.6 or earlier
- Apple watchOS version before 10.0.1
Avoidance measures are necessary
Users who want to protect their personal data should immediately update their devices to the latest Watch-OS, TV-OS and Mac-OS versions. The national nodal body that handles cyber security issues has issued a similar advisory. Media reports say that if the software vulnerabilities are not fixed, cyber attackers may be able to access Apple watches, televisions, iPhones and MacBooks. Important update released by Apple to fix this issue, official website cert-in.org.in Also available.