Slow Fog: Security personnel discovered a new vulnerability in iOS 16, advising cryptocurrency practitioners not to use jailbroken devices
ChainCatcher news, Slow Mist's Chief Information Security Officer 23pds tweeted that cybersecurity researchers have discovered a new exploit persistence technique in iOS 16: it can silently access the device even when the victim's Apple device is offline.
The attacker lures the victim into believing that their device's airplane mode is functioning normally, while in fact, after successfully exploiting the device, the attacker has implanted a fake artificial airplane mode that edits the user interface to display the airplane mode icon and cuts off internet access for all applications except the attacker's application. This attack method creates a false impression for the user that "airplane mode" is enabled, while simultaneously allowing malicious actors to quietly link the malicious application to the cellular network, hijacking and receiving relevant data, thus achieving silent control of the device.
This vulnerability is only possible on devices that have already been exploited or jailbroken. It serves as a reminder for cryptocurrency practitioners not to use jailbroken devices for convenience.