Trust Wallet issued a warning today, stating that they have discovered a new zero-day exploit on the dark web that targets iOS users. This exploit allows for the invasion of iPhones through iMessage without any user interaction. This vulnerability is particularly dangerous for high net worth individuals, and the company recommends that all iOS users temporarily disable iMessage until Apple releases the corresponding security update.
Apple users should take note! Trust Wallet, a provider of cryptocurrency wallets, tweeted early this morning that they have discovered a high-risk zero-day exploit targeting iOS users on the dark web. This exploit can invade iPhones through iMessage without requiring users to click on any links. Users are advised to disable iMessage services as soon as possible until Apple releases a security patch.
Note: Zero-day exploit refers to a security vulnerability in software or hardware that has not yet been discovered or patched by developers.
Take immediate action to prevent attacks. Trust Wallet emphasizes that this is not an issue specific to Trust Wallet, but rather a risk faced by all cryptocurrency wallets stored on iPhones with iMessage enabled. To prevent attacks from this new vulnerability, users are advised to immediately disable iMessage. The specific steps are as follows:
1. Open Settings
2. Tap on Messages
3. Turn off the iMessage switch
The CEO of Trust Wallet, Eowyn Chen, shared a screenshot indicating that the price for this exploit is as high as $2 million. Considering this price, it is evident that this vulnerability is targeted at “very high net worth individuals” because the more this zero-day exploit is used, the greater the likelihood that it will be discovered by researchers in real-world environments (once discovered, the related security vulnerabilities can be fixed, thus reducing the value and effectiveness of the exploit).
Currently, Apple has not made any public statements or released a security patch for this exploit.
Screenshot shared by Eowyn Chen
Expert skepticism
However, this vulnerability threat has been met with skepticism from some industry experts. Anonymous blockchain researcher Beau responded to Eowyn’s screenshot, stating, “Beau emphasizes that the warning issued by Trust Wallet may cause unnecessary panic and damage.”
In response, Trust Wallet’s CEO tweeted back, stating that their information comes from their “security partners and researchers” who continuously check for security threats. After confirmation, they decided to publicly share the information to fulfill their commitment to community safety.
This is not the first time iMessage has been exploited. According to Kaspersky security researchers, Apple’s iMessage application has also been used as a medium for hackers in previous incidents.
Related report:
Apple’s M-series chips vulnerable to security exploits! Encryption keys at risk of theft, not easily repairable.
Nigeria bans cryptocurrency exchanges such as Binance and Coinbase: attempting to manipulate the Naira exchange rate and engage in illegal money laundering.
Tether CEO: Hackers attempted to exploit a “payment vulnerability” using $15 billion worth of XRP, but were unsuccessful.