Apple has confirmed a serious vulnerability in its devices that allowed attackers to execute remote code through malicious web content, potentially jeopardizing the security of users’ cryptocurrency assets.
The exploit, which was detailed in a recent Apple security report, specifically targeted JavaScriptCore and WebKit, two crucial components responsible for processing web content across Apple’s ecosystem. The company has since urged users to update their devices to the latest software versions to patch the flaw and mitigate the risk.
Remote Code Exploit Affected Macs, iPhones, and iPads
The vulnerability, discovered by Google’s Threat Analysis Group, enabled attackers to exploit web content, leading to potential cross-site scripting attacks. Apple acknowledged that the exploit may have been actively used against Intel-based Mac systems, which raised concerns about its wider impact. However, the flaw was not confined to Mac computers—iPhone and iPad users were also at risk. The bug in JavaScriptCore could allow arbitrary code execution if users visited malicious websites.
In response, Apple has released a software update to address the issue and prevent further exploitation.
Potential Crypto Risks: Exposed Data and Private Keys
Jeremiah O’Connor, CTO of Trugard, a cybersecurity firm specializing in crypto protection, warned that unpatched devices could expose sensitive data, including private keys and passwords stored in browsers. Such a vulnerability could lead to serious security risks for cryptocurrency users, making theft of digital assets a tangible threat. O’Connor emphasized the importance of updating devices to safeguard crypto holdings and private information.
“Attackers could access sensitive data, which poses significant risks to crypto users,” O’Connor said in a statement.
Immediate Response from the Crypto Community
The news of the vulnerability quickly spread throughout the cryptocurrency community. Former Binance CEO Changpeng Zhao took to social media to advise Intel-based MacBook users to immediately update their systems to protect their crypto assets from potential exploitation.
Previous Apple Vulnerabilities and Security Concerns
This disclosure follows earlier reports of vulnerabilities in Apple’s M-series chips (M1, M2, and M3), which were found to have a flaw in the prefetching process. Prefetching, a feature designed to enhance device performance, could be exploited by attackers to store sensitive data in the processor’s cache, thereby allowing them to reconstruct cryptographic keys.
Unlike software vulnerabilities, the M-series chip flaw cannot be resolved through software updates alone. Researchers suggest workarounds exist, but they often come with a trade-off between device performance and security.
Apple’s recent vulnerabilities highlight the growing overlap between cybersecurity and cryptocurrency. As digital asset adoption increases, the importance of timely updates and robust security measures to protect sensitive data becomes ever more critical.
Cthulhu Stealer Malware Targets Mac Users
In addition to the JavaScriptCore vulnerability, Apple users have also faced threats from malware targeting cryptocurrency wallets. In August, cybersecurity firm Cado Security warned of a new malware variant, “Cthulhu Stealer,” which targets personal information and cryptocurrency wallets on Mac systems.
While macOS has long been considered secure, malware targeting the operating system has been on the rise. Cthulhu Stealer is designed to masquerade as legitimate software, such as CleanMyMac or Adobe GenP, in the form of an Apple disk image (DMG). Once downloaded and opened, the malware prompts users to enter their password through macOS’s command-line tool, which runs AppleScript and JavaScript.
After the initial password is entered, Cthulhu Stealer requests a second password to access Ethereum wallets, such as MetaMask. Other similar threats, like the AMOS malware that mimics Ledger Live software, have also surfaced in recent months, prompting Apple to bolster its macOS security.
In response, Apple recently rolled out updates to make it more difficult for users to bypass Gatekeeper protections, which ensure that only trusted applications are run on macOS devices.
Conclusion
As the digital world becomes increasingly interconnected, Apple’s latest security disclosures underscore the importance of robust cybersecurity measures, especially for cryptocurrency users. The growing number of threats—ranging from remote code execution exploits to malware targeting wallets—has raised alarm bells across the tech and crypto industries. Users are strongly encouraged to update their devices regularly to protect sensitive data and digital assets from exploitation.
