Apple 0-Day Vulnerability Exploited in Highly Sophisticated Attacks

Home/Apple, Internet Security, Mobile Security, Security Advisory, Security Update, vulnerability, Zero Day Attack/Apple 0-Day Vulnerability Exploited in Highly Sophisticated Attacks

Apple 0-Day Vulnerability Exploited in Highly Sophisticated Attacks

Apple released iOS 18.3.1 and iPadOS 18.3.1 to fix a zero-day vulnerability exploited in targeted attacks by bypassing USB Restricted Mode.

This feature blocks unauthorized USB access when a device is locked. The update is available for iPhone XS and later, along with various iPad models.

Apple 0-Day Vulnerability

The update addresses a vulnerability in the Accessibility framework that could let attackers disable USB Restricted Mode on a locked device. This posed a serious risk, as it allowed unauthorized access to sensitive data.

Apple confirmed reports of this flaw being exploited in highly sophisticated attacks targeting specific individuals. The issue stemmed from an authorization flaw, which Apple fixed by improving state management to enhance device security.

The vulnerability, identified as CVE-2025-24200, was reported by Bill Marczak of The Citizen Lab at the University of Toronto’s Munk School.

Apple withholds security details until investigations are complete and patches are available. The company urges users to update their devices promptly to stay protected.

Post Views: 115
By | 2025-02-11T03:32:09+05:30 February 10th, 2025|Apple, Internet Security, Mobile Security, Security Advisory, Security Update, vulnerability, Zero Day Attack|

About the Author:

FirstHackersNews- Identifies Security

Related Posts

Leave A Comment

Subscribe to our newsletter to receive security tips everday!