The Indian government has issued a serious warning to iPhone and iPad users about multiple security flaws in Apple’s ios and iPadOS software. The vulnerabilities are said to put devices and data at risk, allowing attackers to access the data or make the devices inoperable. The Indian Computer Emergency Response Team (CERT-In), under the Ministry of Electronics and Information Technology, has called the alert “high severity.” Notably, the newer devices running iOS 18 are also at risk.
Here’s what it means and how you can protect your device.
According to CERT-In advisory, iPhones running a version older than iOS 18.3 and iPadOS 17.7.3 or 18.3, are most likely to be affected by the malicious agents. From iPhone XS and newer, iPad 6th generation and above, to iPad Pro 2nd generation onward, iPad Air 3rd gen and later, and iPad mini 5th gen or newer, are at severe risk of being attack.
The advisory has shared that the Darwin notification system—a part of Apple’s internal messaging system has been compromised. The affected devices allow attackers to send system-wide notifications and get access to phone’s data including Photos app without users’ permission. That’s not all, it might even crash the device completely, making it unfunctional until manually restored. The advisory said that some of these flaws are being actively exploited in real-world attacks. However, Apple has already released a new OS update to secure the devices.
Apple has released security patches to protect the devices from attackers. Users can download the latest versions of iOS or iPadOS under the device settings tab. They are also advised to avoid downloading apps from unverified sources.