Indian Govt issues Security certificate warning on Apple pro

A new security gap that might let attackers take over users' Apple devices has been warned with high severity by the Indian government. The WebKit browser engine, which is used by Safari and other browsers, has a vulnerability. It is found in Apple products including the watch and the iPhone.

By tricking users into visiting a fraudulent website or opening a malicious attachment, attackers might take advantage of the vulnerability. If the attack is successful, the attackers could access the user's private files and information, and they might even be able to infect the user's device with malware.

Issues with certificate validation in the Security component, the Kernel, and the WebKit component have led to the existence of these vulnerabilities in Apple products.

By sending a request that is carefully constructed, an attacker could take advantage of these vulnerabilities. These flaws could allow an attacker to override security measures on the targeted system or run arbitrary code, giving them higher access rights.

Users who wish to secure their personal data should update their devices to the most recent watchOS, tvOS, and macOS versions as soon as possible, advises the national nodal body that manages cybersecurity-related issues across several releases. Attackers might be able to access Apple watches, TVs, iPhones, and MacBooks if software shortcomings are not fixed.

The required updates from Apple are also available on the official website, cert-in.org.in, to resolve the issue at hand.

The Ministry of Electronics and Information Technology of the Government of India oversees the Indian Computer Emergency Response Team (CERT-In or ICERT). It is the primary institution in charge of addressing threats to online security like hacking and scams. It improves the Indian Internet domain's security defences.

List of affected software: -