Trust Wallet, a cryptocurrency wallet provider, has issued a warning about a potential zero-day exploit that could impact Apple iOS users through the iMessage service. The company claims to have obtained “credible intel” indicating that this exploit allows attackers to infiltrate iPhones without the need for the user to click on any links, similar to the capabilities of the notorious Pegasus spyware. This information reportedly came from the dark web, where the exploit was said to be offered for sale at a price of $2 million.
In response to this potential threat, Trust Wallet has advised its users to disable iMessage until Apple can patch the vulnerability. The alert was issued after monitoring various channels, including underground forums that often serve as marketplaces for buying and selling exploits. Trust Wallet emphasized its commitment to user security, actively working with security partners and researchers to identify and mitigate such threats.
However, the claim has been met with skepticism from parts of the online community. Some users on the social media platform X expressed doubts about the existence of the exploit, citing that Trust Wallet’s evidence was merely a screenshot from someone claiming to have the exploit. Blockchain researcher Beau criticized Trust Wallet for potentially overstating the threat level, indicating a need for more concrete evidence before causing alarm.
Despite the controversy, Trust Wallet maintains that its warning was issued out of concern for user safety, clarifying that it harbors no negative sentiments towards Apple or iMessage. The company reiterated its love for the messaging platform but stressed that security for its users remains a top priority. As the situation develops, both Trust Wallet and its users are awaiting further updates from Apple regarding this alleged security flaw.
