Online Database Monitoring Company Webz.io I found out that the darknet sells an exploit of a new zero-day vulnerability for iOS and macOS devices. It is based on the vulnerability CVE-2022-32893, which the company fixed the other day. However, the researchers claim that the exploit is intended for an already patched vulnerability.
It is sold for 2.5 million euros. Using the Dark Web Data API, experts found that cybercriminals discuss this vulnerability on various platforms, starting with Telegram and ending with sites in Tor.
In August, Apple closed two critical vulnerabilities: CVE-20220-32893 and CVE-2022-32894. They allowed hackers to gain control of the device and install malware. Security updates were released for iOS 15.6.1, iPadOS 15.6.1 and macOS Monterey 12.5.1, including fixes for vulnerabilities in the operating system kernel and WebKit engine.
In September, Apple released a similar update for iOS 12.5.6, closing a critical vulnerability on the iPhone 5S and 6.
It is sold for 2.5 million euros. Using the Dark Web Data API, experts found that cybercriminals discuss this vulnerability on various platforms, starting with Telegram and ending with sites in Tor.
In August, Apple closed two critical vulnerabilities: CVE-20220-32893 and CVE-2022-32894. They allowed hackers to gain control of the device and install malware. Security updates were released for iOS 15.6.1, iPadOS 15.6.1 and macOS Monterey 12.5.1, including fixes for vulnerabilities in the operating system kernel and WebKit engine.
In September, Apple released a similar update for iOS 12.5.6, closing a critical vulnerability on the iPhone 5S and 6.
