Trust Wallet, a decentralized wallet owned by cryptocurrency exchange Binance, has issued a warning to iPhone users regarding a security vulnerability in iMessage. The vulnerability is reportedly being sold on the Dark Web for $2 million and can be exploited by hackers to remotely access an iPhone without any interaction from the user. While all iPhone users could be targeted, high-value targets are at a greater risk. Trust Wallet has advised its users to disable iMessage until Apple releases a fix.
However, TechCrunch believes that disabling iMessage is not necessary for all users unless they handle sensitive data. The publication notes that there is no concrete evidence of the vulnerability being exploited.
Trust Wallet’s claims have been verified through an advertisement on the Dark Web that directs users to a website called CodeBread Lab. While it is a challenging task to create a “zero-click” attack against a Zero-day vulnerability, the website’s content is full of typos and does not provide any credible evidence to support the existence of the vulnerability. This has led to speculation that CodeBread Lab might be a scam and is trying to lure people into paying $2 million worth of Bitcoin to a wallet address on the public blockchain.
In light of this, users should consider activating Lockdown Mode on their iPhones instead of disabling iMessage. Lockdown Mode is a highly secure mode that protects users from extremely rare and sophisticated cyberattacks. Apple claims that its devices cannot be hacked in Lockdown Mode. To activate Lockdown Mode, users need to go to Settings > Privacy & Security > Lockdown mode > Turn on blockade mode and follow the instructions.