Cryptocurrency security company CertiK has reported a significant security vulnerability in the iOS version of cryptocurrency exchange OKX. The vulnerability, called a critical Remote Code Execution (RCE), could potentially compromise users' sensitive data and crypto assets.
CertiK published a statement on the subject:
We urge OKX wallet users to immediately update their iOS apps to the latest version. We detected and reported this vulnerability in the OKX iOS App earlier this month. The vulnerability allows an attacker to completely control the OKX iOS App. “If users insist on using an outdated version, they risk losing their assets.”
In response to CertiK's findings, OKX's official China X account also released a statement:
“After receiving a friendly reminder from CertiK, we completed the relevant update the first time. This issue is a third-party application service provider vulnerability, does not involve the official OKX program itself, and will not affect the security of users' assets. “The platform did not encounter any loss of assets or information after verification.”
OKX assured its users that the issue was fixed in the iOS 6.45.0 version of the app.
*This is not investment advice.