Government has a Safari ‘warning’ for MacBook users – Times of India
What is the vulnerability
According to CERT-In, the latest security flaw, named CVE-2023-32439, is affecting Apple Safari versions before 16.5.1 for macOS Monterey.
How this vulnerability can affect users
The government agency claims that the new vulnerability reported in Apple Safari can allow a remote attacker to execute codes arbitrarily on targeted systems. CERT-In also explains that this vulnerability exists in Apple Safari due to a type of confusion error in the WebKit component.
CERT-In has also mentioned that an attacker can exploit this flaw by persuading the victim to open a specially crafted file or app.
Apple has already acknowledged the issue and is yet to roll out a fix for the same. For customers’ protection, The company said that it doesn’t disclose, discuss or confirm security issues until an investigation has occurred and patches or releases are available.
iOS 16.5.1 fixed two security issues
Two critical security flaws that Apple patched with iOS 16.5.1 was reportedly been used to hack iPhones in Russia. Cybersecurity firm Kaspersky flagged off the security flaw. Apple has also thanked Kaspersky for pointing out these vulnerabilities.
The cybersecurity company noted that “the malicious code installed after infection had 24 commands, including extracting passwords from Apple’s Keychain, monitoring locations, and modifying or exporting files.”
function loadGtagEvents(isGoogleCampaignActive) { if (!isGoogleCampaignActive) { return; } var id = document.getElementById('toi-plus-google-campaign'); if (id) { return; } (function(f, b, e, v, n, t, s) { t = b.createElement(e); t.async = !0; t.defer = !0; t.src = v; t.id = 'toi-plus-google-campaign'; s = b.getElementsByTagName(e)[0]; s.parentNode.insertBefore(t, s); })(f, b, e, 'https://www.googletagmanager.com/gtag/js?id=AW-877820074', n, t, s); };
window.TimesApps = window.TimesApps || {}; var TimesApps = window.TimesApps; TimesApps.toiPlusEvents = function(config) { var isConfigAvailable = "toiplus_site_settings" in f && "isFBCampaignActive" in f.toiplus_site_settings && "isGoogleCampaignActive" in f.toiplus_site_settings; var isPrimeUser = window.isPrime; if (isConfigAvailable && !isPrimeUser) { loadGtagEvents(f.toiplus_site_settings.isGoogleCampaignActive); loadFBEvents(f.toiplus_site_settings.isFBCampaignActive); } else { var JarvisUrl="https://jarvis.indiatimes.com/v1/feeds/toi_plus/site_settings/643526e21443833f0c454615?db_env=published"; window.getFromClient(JarvisUrl, function(config){ if (config) { loadGtagEvents(config?.isGoogleCampaignActive); loadFBEvents(config?.isFBCampaignActive); } }) } }; })( window, document, 'script', );
For all the latest Technology News Click Here