Close Menu
TechBrunchTechBrunch
  • Home
  • AI
  • Apps
  • Crypto
  • Security
  • Startups
  • TechCrunch
  • Venture

Subscribe to Updates

Subscribe to our newsletter and never miss our latest news

Subscribe my Newsletter for New Posts & tips Let's stay updated!

What's Hot

Things you don't want to miss on October 20th

May 25, 2025

Save $900 + 90% from 2 tickets to destroy 2025 in the last 24 hours

May 25, 2025

Naukri has published the recruiter's email address, researchers say

May 24, 2025
Facebook X (Twitter) Instagram
TechBrunchTechBrunch
  • Home
  • AI

    OpenAI seeks to extend human lifespans with the help of longevity startups

    January 17, 2025

    Farewell to the $200 million woolly mammoth and TikTok

    January 17, 2025

    Nord Security founder launches Nexos.ai to help enterprises move AI projects from pilot to production

    January 17, 2025

    Data proves it remains difficult for startups to raise capital, even though VCs invested $75 billion in the fourth quarter

    January 16, 2025

    Apple suspends AI notification summaries for news after generating false alerts

    January 16, 2025
  • Apps

    Digg Founder Kevin Rose offers to buy a pocket from Mozilla

    May 23, 2025

    Bluesky begins to check for “notable” users

    May 22, 2025

    Mozilla shuts down its Read-It-Later app pocket

    May 22, 2025

    Opening a Social Web Browser Surf makes it easy for anyone to create custom feeds

    May 22, 2025

    Anthropic's new Claude4 AI model can be inferred in many steps

    May 22, 2025
  • Crypto

    Save $900 + 90% from 2 tickets to destroy 2025 in the last 24 hours

    May 25, 2025

    Only 3 days left to save up to $900 to destroy the 2025 pass

    May 23, 2025

    Starting from up to $900 from Ticep, 90% off +1 in 2025

    May 22, 2025

    Early savings for 2025 will end on May 25th

    May 21, 2025

    Coinbase says its data breach will affect at least 69,000 customers

    May 21, 2025
  • Security

    Naukri has published the recruiter's email address, researchers say

    May 24, 2025

    Apple CEO reportedly urged the Texas governor to abandon the online child safety bill

    May 23, 2025

    Artemis Seaford and Ion Stoica cover the ethical crisis in their sessions: AI

    May 23, 2025

    Mysterious hacking group Careto was run by the Spanish government, sources say

    May 23, 2025

    Microsoft says Lumma Password Stealer Malware found on 394,000 Windows PCs

    May 22, 2025
  • Startups

    7 days left: Founders and VCs save over $300 on all stage passes

    March 24, 2025

    AI chip startup Furiosaai reportedly rejecting $800 million acquisition offer from Meta

    March 24, 2025

    20 Hottest Open Source Startups of 2024

    March 22, 2025

    Andrill may build a weapons factory in the UK

    March 21, 2025

    Startup Weekly: Wiz bets paid off at M&A Rich Week

    March 21, 2025
  • TechCrunch

    OpenSea takes a long-term view with a focus on UX despite NFT sales remaining low

    February 8, 2024

    AI will save software companies' growth dreams

    February 8, 2024

    B2B and B2C are not about who buys, but how you sell

    February 5, 2024

    It's time for venture capital to break away from fast fashion

    February 3, 2024

    a16z's Chris Dixon believes it's time to focus on blockchain use cases rather than speculation

    February 2, 2024
  • Venture

    Things you don't want to miss on October 20th

    May 25, 2025

    Khosla ventures among VCS experimenting with AI injection rollups in mature companies

    May 23, 2025

    Klarna CEO and Sutter Hill wins lap after Jony Ive's Openai deal

    May 22, 2025

    Wild story of how Moxxie-led Intestinal Toilet Startup Sloan was registered as a gut toilet startup throne

    May 22, 2025

    Submitted submission raises $17 million to automate tax preparation dr voyages

    May 21, 2025
TechBrunchTechBrunch

Cryptocurrency wallet maker’s warning about iMessage bug sounds like false alarm

TechBrunchBy TechBrunchApril 16, 20245 Mins Read
Facebook Twitter Pinterest Telegram LinkedIn Tumblr WhatsApp Email
Share
Facebook Twitter LinkedIn Pinterest Telegram Email


One cryptocurrency wallet maker claimed this week that hackers may be targeting people with an iMessage “zero-day” exploit, but all signs point to an exaggerated threat, if not an outright scam. It shows.

Trust Wallet’s official X (formerly Twitter) account I have written “We have received reliable information about a high-risk zero-day exploit targeting iMessage on the dark web, which can compromise your iPhone without even clicking a link. High-value target may be present. Each use increases the risk of detection.

The wallet maker recommended that iPhone users turn off iMessage completely “until Apple patches this,” even though there is no evidence that “this” exists.

The tweet went viral and had been viewed more than 3.6 million times as of publication.The wallet was trusted after a few hours as the post received attention I wrote a follow-up post. The wallet maker emphasized its decision to go public, saying it will “proactively communicate potential threats and risks to the community.”

Trust Wallet, owned by crypto exchange Binance, did not respond to TechCrunch's request for comment. Apple spokesman Scott Radcliffe declined to comment Tuesday.

As it turns out, According to Éowyn Cheng, CEO of Trust Wallet:, “Intel” is an ad on a dark web site called CodeBreach Lab where someone is offering the alleged exploit described above for $2 million in Bitcoin cryptocurrency. The ad, titled “iMessage Exploit,” states that the vulnerability is a remote code execution (or RCE) exploit that requires no interaction from the target (commonly known as a “zero-click” exploit) and is available in the latest versions of iOS. claims to work. Some bugs are called zero-day because the vendor hasn't had time to fix the vulnerability or they are zero-day. In this case, there is no evidence of an exploit to begin with.

Screenshot of a dark web ad claiming to sell a suspected iMessage exploit. Image credit: TechCrunch

Screenshot of a dark web ad claiming to sell a suspected iMessage exploit. Image credit: TechCrunch

RCE is one of the most powerful exploits because it allows hackers to remotely control the target device over the Internet. Exploits like his RCE, combined with zero-click functionality, are extremely valuable as they allow attacks to be carried out invisibly without the device owner knowing. In fact, companies that acquire and resell zero-days are currently offering anywhere from $3 million to $5 million for that kind of zero-click zero-day. This shows how difficult it is to find and develop this type of exploit.

Contact Us Do you have any information about actual zero-days? Or about spyware providers? From your non-work device, on Signal (+1 917 257 1382), or on Telegram, Keybase and Wire @lorenzofb, or by email at Lorenzo Franceschi-Bicchierai You can contact us safely. He can also be reached at TechCrunch via SecureDrop.

Given the context of how and where this zero-day is being sold, this is all just a scam, and Trust Wallet has fallen for it, creating what those in the cybersecurity industry call FUD, or “uncertainty and It is very likely that they spread fear. Doubt. “

Zero-days exist and have been used by government hacking forces for years. But in reality, unless you're a high-risk user, such as a journalist or dissident in an oppressive regime, you probably don't need to turn off iMessage.

Lockdown mode is a special mode that disables certain Apple device features, with the goal of reducing the ways hackers can attack your iPhone or Mac.

Apple says there is no evidence that anyone has hacked someone else's Apple device while in lockdown mode. Some cybersecurity experts say: Luna Sandvik And that researcher The folks at Citizen Lab, which has investigated dozens of iPhone hacks, recommend using lockdown mode.

CodeBreach Lab itself appears to be a new, unproven website. When we checked, Google only returned 7 results. One of his posts was on a popular hacking forum asking people if they had heard of CodeBreach Lab.

CodeBreach Lab claims on its home page (albeit with a typo) that it offers several other exploits beyond iMessage, but provides no further evidence.

The owners describe CodeBreach Lab as a “cyberdisruption nexus.” But perhaps it would be more appropriate to call it a marriage of bragging and naivety.

TechCrunch was unable to reach CodeBreach Lab for comment because it does not have a way to contact the alleged suspect companies. When we tried to purchase the alleged exploit, the website asked for the buyer's name and email address and sent $2 million in Bitcoin to a specific wallet address on a public blockchain. I asked him to send me the money. From what we've checked, no one has ever done that before.

In other words, if someone wanted this purported zero-day, they would have to transfer $2 million to a wallet, but there is currently no way to know who the wallet belongs to or even contact them.

And it is very likely that this will continue.





Source link

Share. Facebook Twitter Pinterest LinkedIn Tumblr Email

Related Posts

Naukri has published the recruiter's email address, researchers say

May 24, 2025

Apple CEO reportedly urged the Texas governor to abandon the online child safety bill

May 23, 2025

Artemis Seaford and Ion Stoica cover the ethical crisis in their sessions: AI

May 23, 2025

Mysterious hacking group Careto was run by the Spanish government, sources say

May 23, 2025

Microsoft says Lumma Password Stealer Malware found on 394,000 Windows PCs

May 22, 2025

Signal's new Windows update prevents the system from capturing screenshots of chat

May 22, 2025

Leave A Reply Cancel Reply

Top Reviews
Editors Picks

7 days left: Founders and VCs save over $300 on all stage passes

March 24, 2025

AI chip startup Furiosaai reportedly rejecting $800 million acquisition offer from Meta

March 24, 2025

20 Hottest Open Source Startups of 2024

March 22, 2025

Andrill may build a weapons factory in the UK

March 21, 2025
About Us
About Us

Welcome to Tech Brunch, your go-to destination for cutting-edge insights, news, and analysis in the fields of Artificial Intelligence (AI), Cryptocurrency, Technology, and Startups. At Tech Brunch, we are passionate about exploring the latest trends, innovations, and developments shaping the future of these dynamic industries.

Our Picks

Things you don't want to miss on October 20th

May 25, 2025

Save $900 + 90% from 2 tickets to destroy 2025 in the last 24 hours

May 25, 2025

Naukri has published the recruiter's email address, researchers say

May 24, 2025

Subscribe to Updates

Subscribe to our newsletter and never miss our latest news

Subscribe my Newsletter for New Posts & tips Let's stay updated!

© 2025 TechBrunch. Designed by TechBrunch.
  • Home
  • About Tech Brunch
  • Advertise with Tech Brunch
  • Contact us
  • DMCA Notice
  • Privacy Policy
  • Terms of Use

Type above and press Enter to search. Press Esc to cancel.