CERT-In Issues High-Risk Security Alert for iPhone and iPad Users in India
In a serious cybersecurity development, the Indian Computer Emergency Response Team (CERT-In) has issued a high-severity warning for iPhone and iPad users in India. The agency, which operates under the Ministry of Electronics and Information Technology, flagged multiple vulnerabilities in Apple’s iOS and iPadOS, which could allow attackers to access sensitive data or even disable devices entirely.
According to the advisory, the flaws impact a wide range of Apple devices—including both older and newer models. Devices running iOS versions before 18.3 and iPadOS versions prior to 17.7.3 or 18.3 are considered vulnerable. Affected devices include:
- iPhone XS and newer
- iPad Pro (2nd gen and later)
- iPad 6th gen and later
- iPad Air (3rd gen onward)
- iPad mini (5th gen and above)
One of the most alarming issues stems from a flaw in the Darwin notification system, which handles internal system messages. CERT-In warns that even non-privileged apps could exploit this system to crash the device or send sensitive system notifications without permission.
Potential Threats:
The consequences of these vulnerabilities could be severe:
- Theft of personal or financial data
- Bypassing of Apple’s security mechanisms
- Execution of malicious code
- Complete system crashes, rendering devices unusable
CERT-In also revealed that some of these vulnerabilities are already being exploited in the wild, increasing the urgency for users to take action.
What Users Should Do:
- Update immediately to the latest iOS or iPadOS version.
- Avoid installing apps from untrusted sources.
- Monitor devices for unusual activity, such as unexpected behavior or slowdowns.
As Apple’s user base expands rapidly in India, cybersecurity experts stress the importance of staying up to date with official patches and practicing safe digital habits to prevent attacks.
