- Trust Wallet alerts Apple users to a high-risk zero-day iMessage exploit found on the Dark Web, capable of compromising iPhones without clicking any links.
- Trust Wallet CEO Eowyn Chen shares evidence of the exploit, advising users to disable iMessage immediately until Apple issues a security patch.
Crypto wallet and Web3 gateway, Trust Wallet, has today taken it to X (formerly Twitter) to warn Apple users about a potential cyber threat. According to Trust Wallet, there’s “credible intel regarding a high-risk zero-day exploit targeting iMessage on the Dark Web.”
It also indicates that this zero-day exploit can compromise iPhones without the need to click any link. High-value targets are likely, and each use increases the risk of detection.
1/2: ⚠️ Alert for iOS users: We have credible intel regarding a high-risk zero-day exploit targeting iMessage on the Dark Web.
— Trust Wallet (@TrustWallet) April 15, 2024
This can infiltrate your iPhone without clicking any link. High-value targets are likely. Each use raises detection risk. #CyberSecurity
Trust Wallet CEO, Eowyn Chen, has also addressed the threat, sharing a screenshot of which she claims to be a potential zero-click exploit. The screenshot shows that the threat actor is asking a price of $2 million.
Threat intel detected an iOS iMessage zero-day exploit for sale in the Dark Web. It is a zero click exploit to take over control of the phone via iMessages. Its asking price is $2M. This would make sense for very high value individual targets, as more the zero-day is used,… https://t.co/KTKgW6uCuv pic.twitter.com/6ULRgVSxjc
— Eowync.eth (@EowynChen) April 15, 2024
To protect against this iMessage exploit, users should immediately disable iMessage, as per Trust Wallet. Go to Settings -> Messages -> toggle iMessage off. Keep this setting until Apple provides a security update.
Edited by Harshajit Sarmah
