Government Warns iPhone Users About The High Risk Of Losing Sensitive Info

Government Warns iPhone Users About The High Risk Of Losing Sensitive Info

Written by Deepak Bhagat, In Tech, Published On
December 16, 2023
Table of Contents

India’s top cybersecurity regulator issued a caution for Apple products, following a similar high-risk warning for Samsung.

Two days prior, Samsung notified customers about major phone security vulnerabilities. The government announced Friday that various Apple product vulnerabilities might allow attackers to access personal data, execute arbitrary code, bypass security limits, and trigger DoS circumstances. Two days earlier, Samsung informed customers of serious security concerns affecting Android 11, 12, 13, and 14 phones. Since it runs Android 14, Samsung’s Galaxy S23 was included.

Samsung phone owners were notified of significant security flaws two days prior. The government said on Friday that various Apple products had security holes that allowed hackers to access sensitive data, run arbitrary code, bypass protection, and even cause DoS attacks. Users of Samsung phones running Android 11, 12, 13, and 14 were warned of major security flaws two days ago. Samsung’s top-of-the-line Galaxy S23 was included because it supports Android 14.

The Computer Emergency Response Team (CERT-in) Advisory listed iOS, Apple watchOS, iPadOS, and Safari before 17.2 as insecure on Friday. These goods risk “performing spoofing attacks on the targeted system,” “bypassing authentication,” and escalated privileges. CERT-In rates these goods with “high” severity. The Ministry of Electronics and Information Technology (MeitY) alerted Apple on October 31 that CERT-In would investigate Apple warning Indian iPhone owners of a possible “state-sponsored” attack. “CERT-In and related Government entities will investigate the serious issue,” MeitY’s cyber laws section noted, given the case’s sensitivity and gravity and the security breach involving high-level dignitaries. Industry sources told The Hindu that business reports indicated software improvements were needed.

Also Read -   Google Pixie: Introducing The AI Assistant Exclusively For Pixel Devices

Similar reports from CERT-In revealed Adobe product vulnerabilities. The government released an Office, Windows, Azure, Dynamics, and System Center advisory on December 13. These vulnerabilities could allow attackers to elevate permissions, access sensitive data, remote code attack, spoof, or denial of service.

Thursday, the Trio E-, Q-, and J-Series ethernet data radios from Schneider Electric were notified by CERT-in. Friday saw the second high-risk alert for Apple goods from the Indian Computer Emergency Response Team (CERT-In), following Samsung’s lead. The alert cited flaws in data and device security.

Affected Apple products

Apple iOS versions before 17.1 and iPad versions before 17.1; iOS versions before 16.7.2 and iPad versions before 16.7.2; iOS versions before 15.8 and iPad versions before 15.8. Pre-v14.1 Apple macOS Sonoma, Ventura, Monterey, and tvOS versions. Versions of Apple watchOS before 10.1 and Safari before 17.1

Related articles
Join the discussion!