Important security update! Important security update! Important security update!
Please forward this message to iPhone/Mac users around you. Apple has urgently released a patch for a high-risk vulnerability (CVE-2025-43300). Hackers only need to send a malicious image file to invade your device.
What is this vulnerability?
This vulnerability is identified as CVE-2025-43300, existing in the ImageIO image processing framework of Apple systems. In simple terms, hackers can create a malicious image file, and when your device tries to open this image, the malicious code in the image can exploit an error in the system's image processing, leading to a memory overflow, allowing them to execute arbitrary malicious commands on your device.
What are the risks?
The danger of this vulnerability lies in the fact that the attack process can occur without your knowledge, and you may not even realize that your device has been compromised. Once successful, hackers can:
Steal all your privacy data: including photos, contacts, chat records, and even sensitive information such as account passwords.
Remotely control your device: turn your device into their 'puppet', install malware, or use your device for further attacks.
Infiltrate commonly used apps: any app that processes images, such as WeChat, WhatsApp, cloud storage, etc., could become a target of attack.
Affected system versions:
iOS ≤ 18.6.1
macOS Sonoma ≤ 14.7.7
How to prevent it?
1. Please upgrade your system to the latest version immediately to prevent asset loss.
iPhone/iPad users: go to 'Settings' > 'General' > 'Software Update'.
Mac users: go to 'System Settings' > 'Software Update'.
2. Stay vigilant: Do not casually download or open images from unknown sources.
