Overview
Using “ForcedEntry” vulnerability, an attacker could execute an arbitrary code on the device and gain access to the device.
Description
It was reported that attackers are exploiting a remote code execution vulnerability in Apple iMessage, that affects iOS, macOS and watchOS. This vulnerability allows a remote attacker to gain access to a device without any user interaction. Apple is aware of this issue and has released an update to resolve this vulnerability
Impact
● Execution of suspicious commands and applications
● Malware infection
● Disclosure of sensitive data
Solution/ Workarounds
Apply the latest security updates as detailed in the relevant security update from Apple
More: https://www.cert.govt.nz/it-specialists/advisories/apple-imessage-vulnerability-being-exploited/
Reference
● https://www.cert.govt.nz/it-specialists/advisories/apple-imessage-vulnerability-being-exploited/
Disclaimer
The information provided herein is on an "as is" basis, without warranty of any kind.