Severe Warning Issued for Apple Users in India: Urgent Software Updates Advised
The Indian Computer Emergency Response Team (CERT-In) has issued a “severe” warning for Apple users in India, highlighting multiple vulnerabilities across various Apple products. These vulnerabilities pose serious risks such as information leaks, unauthorized code execution, security bypasses, denial of service (DoS) attacks, and spoofing attacks.
According to the advisory, the affected products include iPhone, iPad, and Mac devices running on specific software versions. The identified vulnerabilities are prevalent in iOS, iPadOS, macOS Sonoma, macOS Ventura, macOS Monterey, watchOS, tvOS, visionOS, and Safari versions prior to certain specified updates. Notably, these vulnerabilities have been classified with a “high” severity level.
CERT-In has strongly advised all Apple users to promptly install the necessary software updates provided by Apple for their respective devices to protect against these vulnerabilities.
While these security issues have not been officially confirmed by Apple, the company has been proactively alerting users in approximately 150 countries, including India, about potential “mercenary spyware attacks”. Similar to the notorious Pegasus spyware developed by NSO Group, mercenary spyware is a highly sophisticated and expensive surveillance tool utilized by private companies and governments to infiltrate the privacy of specific individuals. Often targeting journalists, activists, politicians, and diplomats, these attacks are designed to compromise the security of iPhones remotely.
As part of its efforts to safeguard users from such threats, Apple delivers “threat notifications” to potentially targeted users, offering guidance on protective measures. Additionally, Apple’s Lockdown Mode provides heightened protection for individuals at a high risk of targeted cyberattacks by restricting certain device functionalities to mitigate potential threats.
In light of these developments, Apple users in India are strongly urged to heed the advisory from CERT-In and promptly update their devices with the latest software releases provided by Apple to protect against these critical security vulnerabilities and potential spyware threats.
Stay informed, stay secure.
