Apple corresponds to the vulnerability of automatic penetration which allowed espionage software to exhaust the digital currencies of the source, transforming iPhone, iPad and Mac devices to keys to a single touch to unnecessary benefits.
Apple has published an urgent security update to fill the automatic hacking of attackers to penetrate the iPhone, iPad and Mac, which has raised major concerns among digital money users who depend on Apple devices to protect their portfolios. In a warning declaration published Wednesday evening, the company confirmed the presence of the CVE-2025-43300 symbol, which was discovered in the I / S image responsible for the processing of photo files in its devices.
Apple blocks a vulnerability that uses images to penetrate digital currencies in iPhone and Mac devices
The company has indicated that the harmful software that takes a photo body can damage memory, which gives attackers the possibility of implementing random software instructions in the target device without the need for user interaction. The company said: “Apple is aware of a report indicating the possibility of this gap in a very complex attack targeting specific users.”
The update was published called iOS 18.6.2 and iPados 18.6.2, with MacOS Sequoia 15.6.1, Sonoma 14.7.8 and Ventura 13.7.8. The company has urged users to download updates manually without delay an automatic update to avoid possible operation.
For their part, cybersecurity experts have warned that this vulnerability represents a double danger for owners of digital currencies, since digital transactions are not canceled, apart from traditional financial systems which can make it possible to recover stolen money.
In the event that attackers can access portfolios or trading platform data stored in a hacker, money can be exhausted immediately, and experts have indicated that receiving a malicious image via iMessage may be sufficient to penetrate non-dissuving devices.
In this context, Apple has confirmed that updates include all iPhone devices, from the iPhone XS generation, including the new version of the iPhone 16. The iPads that have been updated include iPad Pro, iPad Air (third generation and beyond), iPad (sixth generation and beyond) and iPad Mini (fifth generation and beyond); The update also includes Mac devices operating according to the last three copies of the macOS system.
Cybersecurity experts have stressed that owners of digital currencies must tighten safety procedures, highlighting the need to transfer the governor’s keys and secure basic accounts such as e-mail and cloud storage services, while documenting any unusual behavior of the system in anticipation of any suspicious activity.
Although the regime’s files can reveal certain penetration indicators, analysts have clearly indicated that they are often complicated and difficult to explain to non -specialists. Apple only disclosed the number of targeted devices, stressing that it is commented on active threats only after the issuance of security updates.
Apple’s warnings are back to large campaigns that have recently targeted digital money users. In 2024, the Kaspersky Cyber Security Company said that the North Korean group Lazare had benefited from a hidden gap that has no update in the Google Chrome browser in a false blockchain game that sets up spy software and the flight of the Governor of Gerpto.
There were many group fraud methods, and the artificial intelligence of the generation was used to attract victims, highlighting the development of attackers’ efforts to grasp digital assets. At the beginning of the same year, the Trust Wallet portfolio indicated that it had received reliable information on a hidden gap in iMessage on sale in the Dark web for $ 2 million. At the time, the portfolio indicated that iOS and technical currency systems can generally become vulnerable to attacks aimed at unauthorized access to personal data and digital assets.
Although Apple said that the recent target attack of “specific users”, analysts have warned that the propagation of knowledge of the details of gaps generally leads to larger -scale exploitation.
Digital currency losses exceeded $ 2.2 billion in 2025, with the increase in large breakthroughs
The digital currency sector around the world suffers from a significant increase in security violations in 2025, because Certik said that losses caused by penetration and fraud exceeded $ 2.2 billion in the first half of this year.
Crypto investors lost $ 2.2 billion due to hackers and scams in H1 2025, with 187 million dollars recovered as threats change, reports @CERTIK.#Cryptocurrency #Cryptohacks https://t.co/5kcavsynbg
– cryptonews.com (@cryptonews) June 30, 2025
The large penetrations included the flight of $ 1.5 billion in the appeal platform and the flight of $ 225 million in Cetus, which has considerably affected total losses. Even when these accidents are excluded, losses remain significant at $ 690 million.
In July only, losses of $ 142 million, resulting from 17 major penetration operations, were recorded, an increase of 27.2% compared to June.
July Crypto Holy Holy Piracy increased by $ 142 million with the violation of $ 44 million in Coindcx and the victims of $ 42 million in GMX.#Jule #Cryptohackhttps://t.co/4ucmkaxuvi
– cryptonews.com (@cryptonews) August 1, 2025
In addition, the number of penetration and fraud in August also increased. On the 14th of this month, these operations targeted the Turkish trading platform BTCURK, because it was exposed to potential penetration of its liver of $ 48 million, which prompted the platform to suspend deposits and withdrawals, noting “technical problems” in its hot governors, but confirmed that transactions were not affected by traditional currencies.
The decentralized financing sector (DEFI) has also undergone significant losses. Certik said that the team’s account had been deleted on X, its website and its telegram channel. This penetration intervened after having controlled the multi-signature portfolio of the project, which allowed the attackers to issue currencies which are not supported by assets. Initially, the team announced that it is negotiating with the attackers to recover the stolen money, but it did not publish any update, which raised doubts about the possibility of pulling the carpet (withdraw the liquidity).
In addition to that, ransom software attacks have increased, as a new group called Washed Digital Currencs, more than $ 34 million since April 2024, targeting American health care providers with ransom demands over a million dollars. For its part, TRM Labs indicated that the embargo could be the new name of the BlackCat group, noting that it is linked to the hacks which affected the United States Pharmacy Association and several regional hospitals.
The message, Apple, issues an emergency update in the iOS system to repair an automatic penetration vulnerability that threatens the governor of Kripto.
