Zero-day exploit draining crypto wallets on iOS and MacOS

There is a zero-day exploit currently being used to target high net worth individuals that use iOS or MacOS versions of their cryptocurrency wallets.

Fawi on X, who first spotted this exploit says, the sender sends you a picture on iOS or Mac OS, allowing them to drain your wallet. You click on the picture they sent and your funds are drained by the exploiter.

Processing a malicious image file may result in memory corruption. 

If you do not click on the image, the hackers simply send it over and over again. If you have not been targeted yet, consider yourself NOT a high net net worth individual.

SOLUTION: Turn off auto image download. For that, go to telegram settings -> data and storage -> and disable both Cellular and WiFi.

Apple has issued security updates for both the operating systems, so you must ensure you are on the latest software. Go to Settings on your phone/laptop and check for the latest update to make sure you are on 18.6.2 and higher.

Logged as CVE-2025-43300, the bug is an out-of-bounds write issue in ImageIO, the component apps rely on to read and write standard image formats. Apple warned that the flaw could let miscreants hijack devices with a booby-trapped image – and for some iDevice users, it sounds like the damage has already been done.

What is a Zero-Day Exploit? It is a cyberattack that takes leverage of an unaddressed or unknown security flaw in a software / hardware / firmware.