Apple has recently revealed a serious security flaw affecting its devices, enabling the execution of malicious code remotely via web-based JavaScript.
This loophole creates an opportunity for attackers to exploit unsuspecting users, potentially compromising their cryptocurrency assets.
A disclosure from Apple highlights the importance of updating to the latest versions of JavaScriptCore and WebKit to close this vulnerability. This issue, initially identified by Google’s threat analysis team, allows harmful web content to trigger cross-site scripting attacks.
Did you know?
Subscribe - We publish new crypto explainer videos every week!
What is Chainlink? LINK Explained Simply (ANIMATED)
Apple acknowledged reports suggesting this vulnerability may have been actively exploited, particularly on Mac systems equipped with Intel processors.
Furthermore, the company released a parallel security advisory for iPhone and iPad users. These devices were similarly affected, with the flaw enabling code execution when visiting malicious websites. Apple assured users that installing the latest updates would mitigate the risk.
Concerns about this vulnerability gained traction on social media, especially within the cryptocurrency community. Changpeng Zhao, Binance
This incident comes from another discovery earlier this year. Security researchers had reported vulnerabilities in Apple’s M1 and M2 chip series. These chips were found to be susceptible to attacks exploiting a mechanism known as prefetching.
This process, intended to optimize performance, allows sensitive data to be stored in the processor’s cache. Hackers can manipulate this flaw to retrieve cryptographic keys.
Cybersecurity threats don’t stop at operating systems—they exploit unsuspecting individuals through clever scams as well. Just recently, a phishing attack cost a Giga Token holder $6 million. How did the hacker pull such a heist? Read the full story.