{"id":77420,"date":"2023-04-18T15:34:52","date_gmt":"2023-04-18T12:34:52","guid":{"rendered":"https:\/\/forklog.com\/en\/?p=77420"},"modified":"2025-09-10T23:13:55","modified_gmt":"2025-09-10T20:13:55","slug":"flaws-in-ios-and-macos-threaten-users-crypto-assets","status":"publish","type":"post","link":"https:\/\/forklog.com\/en\/flaws-in-ios-and-macos-threaten-users-crypto-assets\/","title":{"rendered":"Flaws in iOS and macOS threaten users\u2019 crypto assets"},"content":{"rendered":"

Two critical vulnerabilities have been found in Apple’s operating systems, enabling attackers to obtain superuser privileges on the victim’s device. reported<\/a> by Kaspersky Lab experts.<\/p>\n

\\n\\n\\n\\n<\/p>\n

The first exploit is in the WebKit browser engine, which is used to render web pages.<\/p>\n

\\n\\n\\n\\n<\/p>\n

\n

“This makes it possible to compromise an iPhone, iPad or Mac without any action on the part of the user \u2014 you simply need to lure them to a specially crafted malicious site,” the specialists noted.<\/p>\n<\/blockquote>\n

\\n\\n\\n\\n<\/p>\n

Using the second vulnerability in the IOSurfaceAccelerator object, attackers execute code with kernel privileges, gaining full control over the device.<\/p>\n

\\n\\n\\n\\n<\/p>\n

Journalist Colin Wu noted that this potentially threatens the security of users’ crypto assets.<\/p>\n

\\n\\n\\n\\n<\/p>\n

\n

A very serious vulnerability has been found again in Apple’s operating system. Attackers can gain root privileges, which may compromise the security of users’ crypto assets. Requires updating to iOS 16.4.1 and macOS 13.3.1. H\/T @IM_23pds<\/a> https:\/\/t.co\/n5zSSt0sWD<\/a><\/p>\n

\u2014 Wu Blockchain (@WuBlockchain) April 18, 2023<\/a><\/p><\/blockquote>\n