Mumbai, August 4: The Indian Computer Emergency Team (CERT-In) under MeitY has identified several vulnerabilities in Apple products and issued a “high risk” warning to users. A government-run advisory has warned consumers against counterfeiting and said iPhones, iPads and many other products have software vulnerabilities. CERT-In warned about the vulnerabilities and flagged them as “high,” alerting users and tech giants to take action.

CERT-In said Apple has reported several vulnerabilities, which could allow attackers to gain access to sensitive user information. It could also allow hackers to execute arbitrary code, perform spoofing attacks, bypass security restrictions and cause DoS (denial of service), the advisory said. Mumbai Police recovered Rs 100 crore from cyber fraudsters after registering 35,918 complaints.

According to multiple reports, the advisory identified vulnerabilities in iOS, iPadOS, macOS Sonoma, macOS Ventura, macOS Monterey, watchOS, visionOS, tvOS and the Safar browser. Here is a list of affected versions.

  • iOS/iPadOS versions earlier than 17.6 and 16.7.9
  • macOS Sonoma versions before 14.6
  • Before macOS Ventura version 13.6.8
  • macOS Monterey versions earlier than 12.7.6
  • Prior to watchOS version 10.6,
  • Prior to tvOS version 17.6,
  • Prior to visionOS version 1.3,
  • Safari versions prior to 17.6

CERT-In advises people to install the required updates provided by Apple for this software. These “high-risk” software vulnerabilities exist in iPhones, iPads, Mac computers, Apple Watches, Apple TVs, Vision Pro headsets, and the Safari browser. The advisory said it identified a critical vulnerability that could allow attackers to “execute remote code” and access user information.

These Apple vulnerabilities could allow attackers to act as “logged in” users of the product and access various information. Attackers could operate the device and install apps, view details, change settings and apps, delete user data, and create new accounts with administrative rights. ‘Microsoft fired me in 2005 and it forced me to face my fears, reassess my goals and find a more integrated path’: Kapil Kalshrishtha, CEO of Scantlet.

To frustrate attackers, users can use a strong password and avoid interacting with websites that appear suspicious or potentially malicious. They can also avoid clicking on links or opening files that appear misleading or malicious.

(The above story was first published on LatestLY on August 04, 2024 at 10:48 AM IST. For more news and updates on politics, world, sports, entertainment and lifestyle, log on to our website . latest.com).



Source link