Security Alert: Trust Wallet Urge Users to ‘Disable iMessages’ Amid Zero-Day Exploit

Trust Wallet is urging Apple users to disable iMessage due to a credible zero-day exploit that could allow hackers to take control of iPhones.
The firm claims the zero-day exploit can infiltrate iPhones without users clicking any links, putting crypto wallets at high risk.
Trust Wallet’s CEO shared a screenshot showing the supposed exploit being sold on the dark web for $2 million, though some experts expressed skepticism about the threat.

Trust Wallet, a crypto wallet provider, is urging Apple users to disable iMessage due to credible intelligence regarding a zero-day exploit targeting iMessage that could allow hackers to take control of users’ phones.

Trust Wallet Warns of Zero-Day iMessage Exploit

Trust Wallet posted an alert on Twitter stating that they have “credible intel regarding a high-risk zero-day exploit targeting iMessage on the Dark Web.” The exploit can allegedly infiltrate and control iPhones without requiring users to click any links. Trust Wallet noted that high-value account holders are most at risk.

The firm’s CEO, Eowyn Chen, shared a screenshot claiming to show the exploit for sale for $2 million on the dark web.

ICYMI: @TrustWallet issued an urgent warning to Apple users to disable iMessage, citing a zero-day exploit available on the dark web that allows hackers to control iPhones without user interaction pic.twitter.com/Vya45nWjqQ
— BlockNews.com (@blocknewsdotcom) April 16, 2024

Skepticism Around the Supposed Threat

However, the supposed threat was met with skepticism from industry experts. Blockchain researcher Beau argued that Trust Wallet does not have evidence of an actual iOS exploit, only a screenshot of someone claiming to have one. He warned that Trust Wallet’s alert could cause unwarranted panic.

When pressed for more details, Trust Wallet revealed its intel came from its security team and partners that monitor for threats.

Previous iMessage Exploits

Apple released emergency security updates in March 2022 to fix two iOS zero-day vulnerabilities that were exploited in attacks on iPhones. Additionally, Kaspersky researchers have previously reported iMessage being used as an attack vector by hackers.

In general, zero-day exploits are an ongoing threat in the blockchain space. A recent report claimed that over 280 blockchain networks are vulnerable to zero-day exploits that could put $25 billion in crypto at risk.

Conclusion

While the validity of Trust Wallet’s specific iMessage exploit intelligence remains questionable, it highlights the need for continued vigilance around zero-day threats. Crypto holders should practice good security hygiene, like not clicking suspicious links and keeping devices updated. The cat-and-mouse game between hackers and security experts shows no signs of abating.