Hackers collect passwords, data of some ArCa app users through vulnerability in Safari

An unknown vulnerability in Safari browser has enabled hackers to harvest various passwords and personal information entered in the browser.

The problem also affected the users of the ArCa app/website who did not use two-factor authentication (2FA) when accessing the website, Armenian Card informs.

"Based on the above, the card-to-card transfer service is also unavailable on the ArCa app/website at this time," the statement said.

The company reminds that on Monday, Apple released the iOS 16.3.1, iPadOS 16.3.1, macOS Ventura 13.2.1 updates, through which the abovementioned problem has been resolved and whose description states that there was similar problem. You can get familiarized with the problem here.

"To avoid such problems, we encourage users to activate two-factor authentication (2FA) to access their accounts. The activation option is available only through the web version of our website (not the app) in the Personal Settings section of your register," the company's announcement reads.