The Indian Computer Emergency Response Team (CERT-In) issued an alert with a severity rating, on April 2. The nodal security agency of the Indian government announced a new security warning this week for Apple users in India. The security issue might affect some major parts of Apple devices, including iPhones and Macs.
Devices posing a threat
Here is the list of devices that can be affected by the fraudsters. The list includes Apple Safari versions prior to 17.4.1, Apple macOS Ventura versions prior to 13.6.6, Apple macOS Sonoma versions prior to 14.4.1, Apple visionOS versions prior to 1.1.1, Apple iOS and iPadOS versions prior to 17.4.1 and Apple iOS and iPadOS versions prior to 16.7.7.
What needs to be done
Experts believe that the security vulnerabilities existing in Apple products could allow an attacker to execute arbitrary code on the targeted system, as per insights from CERT-In. The vulnerability exists in Apple products due to out-of-bounds write issues in WebRTC and CoreMedia. This loophole could be exploited by a third-party attacker by making a user visit a link by creating a fake urgency.
Experts explained that people should update their Apple devices as soon as possible. In case users’ devices are limited to a software version mentioned above, users need to upgrade to a new device to avoid facing any further threats.