Indian government issues a high-security alert for Apple consumers, advising them to update their Macs and Watches right away

Indian government issues a high-security alert for Apple consumers

Apple Watch, TV, and Macbook customers in India have received medium- to high-severity alerts from the Indian Computer Emergency Response Team, or CERT-In. Users should immediately update their devices to the most recent watchOS, tvOS, and macOS versions to protect their personal data, according to the national nodal body that manages cybersecurity-related concerns across several releases. On the official website of CERT-In, you can access the government advisories released between March 31 and April 3. If the software problems with Apple Watches, TVs, and MacBooks are not fixed, attackers may be able to access the devices.

In-depth details about Indian government issues a high-security alert for Apple consumers, advising them to update their Macs and Watches right away

The weaknesses on Macs are in Apple’s exclusive Safari web browser. According to CERT-In, the WebKit component’s “improper state management” is the cause of the vulnerability. “A remote attacker could exploit these vulnerabilities by luring a victim to a specially constructed web page,” the alert continues. Of course, if the user chooses to provide information, sensitive data may wind up being obtained.

Users must update to Safari 16.4 from the current version. Open the Apple App Store desktop application, click Updates in the toolbar, and then use the Update buttons to download and install any updates that are listed to update the web browser.

To protect their security, Mac users are also encouraged to upgrade to the latest version of MacOS. Due to “memory concerns, inappropriate checks, improper input validation, curl issues, improper bound checks, privacy issues, logic difficulties, race condition errors, using an earlier version of Vim, and improper state management issues,” according to CERT-In, there are “many vulnerabilities.”

It implies that a hacker might directly control and exploit a variety of applications to harvest sensitive data. According to the agency, these high-severity issues are present in macOS Monterey versions 12.6.4 and earlier, macOS Big Sur versions 11.7.5, and macOS Ventura versions 13.3.

Last but not least, Apple Watches and Apple TVs have a number of problems. According to CERT-In, these holes in “AppleMobileFileIntegrity, Identity Services, Podcasts, TCC, Find My, Shortcuts and WebKit” are the cause of the vulnerabilities in Apple’s tvOS and watchOS products. These flaws could provide an attacker access to personal data, the ability to override privacy settings, the ability to run arbitrary code with kernel privileges, and the ability to fake the user interface on the targeted system.

The organisation urges users to update to more recent watchOS and Apple tvOS versions. The problems affect devices running Apple WatchOS 9.4 and TvOS versions previous to 16.4.

Apple is aware of the issues because it is fixing these bugs in the most recent releases of macOS, tvOS, and watchOS. Users of the iPhone and iPad are advised to update to iOS 16.4 and iPadOS 16.4, even if there isn’t a warning.

Leave a Reply