Apple’s newest iPhone 17 introduces a brand new layer of protection for crypto customers with hardware-level reminiscence protections that goal to stop frequent assault vectors used to hijack signing operations.
On the core of this improve is Reminiscence Integrity Enforcement (MIE), a function enabled by default that makes use of Enhanced Reminiscence Tagging Extension (EMTE)-style reminiscence tagging to detect and block harmful reminiscence entry sorts like out-of-bounds and use-after-free errors.
In accordance with cybersecurity agency Hacken, the brand new MIE system “meaningfully” reduces the danger of attackers utilizing memory-corruption zero-days to take management of signing code. “It’s an actual plus for crypto customers, particularly high-net-worth or frequent signers,” Hacken instructed Cointelegraph.
These vulnerabilities reportedly account for practically 70% of software program flaws and are sometimes exploited in zero-day assaults focusing on wallets and Passkey approvals.
Associated: Apple patches zero-click exploit threatening crypto customers
Apple boosts iPhone 17 defenses
Hacken defined that MIE actively detects and blocks harmful reminiscence entry patterns like out-of-bounds and use-after-free errors, stopping many frequent exploit chains. It’s always-on throughout each kernel and user-level processes, making spyware and adware improvement harder and costly.
“It raises the bar for attackers and makes focused spyware and adware/exploit improvement a lot more durable and costlier,” Hacken mentioned. “That instantly advantages pockets apps and Passkey flows that depend on in-process operations,” the blockchain safety agency added.
Nevertheless, MIE just isn’t a silver bullet. It doesn’t defend in opposition to phishing, social engineering, malicious internet content material, or compromised apps. Moreover, it doesn’t change safe {hardware} wallets or eradicate the necessity for consumer vigilance.
“Safety enhancements cut back total threat however don’t make gadgets invulnerable,” Hacken mentioned, asking customers to be vigilant and anticipate new vulnerabilities.
Associated: Apple eyes generative AI to hurry up customized chip design: Report
Apple crypto customers face safety threats
Apple’s crypto customers have been going through critical safety threats. Final month, it was revealed {that a} zero-click vulnerability permits attackers to compromise iPhones, iPads and Macs with out consumer interplay. Apple launched safety patches throughout a number of OS variations to repair the flaw.
Earlier this yr, Kaspersky warned that malicious software program improvement kits utilized in apps on Google’s Play Retailer and Apple’s App Retailer are scanning customers’ photograph galleries for crypto pockets restoration phrases.
Final yr, Belief Pockets additionally warned Apple customers to disable iMessage because of “credible intel” of a high-risk zero-day exploit circulating on the Darkish Internet that might let hackers take management of iPhones with out consumer interplay.
Journal: Can Robinhood or Kraken’s tokenized shares ever be actually decentralized?
