iCloud Ransomware Vulnerability

Windows users are advised to update iTunes/iCloud/Bonjour as soon as possible, as there is a severe Ransomware risk to their systems caused by a vulnerability in the Windows version of iCloud.

If the latest update is not applied, attackers can exploit iCloud to install Ransomware (namely BitPaymer/iEncrypt) to hold user data and files hostage in exchange for payment.

Security researchers say this attack is hard to detect, which means it’s even more important to run any iTunes/iCloud updates if they have not been installed already.

 

More information here:
https://threatpost.com/apple-itunes-bug-bitpaymer-iencrypt/149075

Official Apple information about this update:
https://support.apple.com/en-us/HT210637

 

Article written by:
Steven Hergert, Information Assurance Analyst