In a significant cybersecurity alert, the Indian government has cautioned iPhone and iPad users about multiple vulnerabilities discovered in Apple’s iOS and iPadOS operating systems. These security flaws, if exploited, could give attackers access to sensitive information or even disable devices entirely.
The Indian Computer Emergency Response Team (CERT-In), which functions under the Ministry of Electronics and Information Technology, has classified this as a high-severity risk. According to its advisory, a broad range of Apple devices — spanning both older and newer models — are affected.
Devices at risk include iPhones running on iOS versions earlier than 18.3 and iPads operating on iPadOS versions prior to 17.7.3 or 18.3, depending on the model. The impacted devices cover models such as the iPhone XS and newer, along with iPads including the iPad Pro (2nd generation and later), iPad 6th generation and above, iPad Air (3rd generation onwards), and iPad mini (5th generation upwards).
A particularly critical issue has been identified in Darwin, Apple’s core notification system. This flaw allows applications — even those without elevated permissions — to send sensitive system-level notifications. If exploited, this vulnerability could crash devices, rendering them unusable until manually restored.
Potential Risks of These Vulnerabilities
The consequences of these security gaps could be serious. Cybercriminals might gain access to confidential personal and financial data, bypass security protections, and execute unauthorised commands. In some cases, attackers could completely crash the device, making it inoperable. CERT-In has confirmed that certain vulnerabilities are already being actively exploited, heightening the urgency for users to act swiftly.
Steps Users Should Take
Apple has responded by releasing security updates designed to patch these issues. Users are strongly encouraged to:
- Update their devices immediately to the latest version of iOS or iPadOS
- Avoid installing apps from untrusted or unverified sources
- Monitor their devices for unusual behaviour that could signal malicious activity
As Apple’s user base continues to expand in India, it is increasingly important for device owners to stay informed and proactive. Keeping software updated and practicing safe usage habits are key defenses against today’s rapidly evolving cybersecurity threats.