A recently discovered vulnerability could allow attackers to extract data from locked iPhones and iPads. Apple has released urgent software updates to address the issue.
Apple has released a critical software update for iPhones and iPads to address a vulnerability that could allow attackers to extract data even from locked devices. The company states that if granted physical access, an attacker could exploit a flaw within Apple 's Accessibility framework to bypass USB Restricted Mode, a security feature that prevents USB accessories from accessing data from a locked iPhone or iPad after an hour of inactivity.
The vulnerability, discovered and reported by security expert Bill Marczak of Citizen Lab at the University of Toronto's Munk School, has been confirmed by Apple to have been exploited in the wild, though specific details about the attacks remain undisclosed. The iOS 18.3.1 and iPadOS 18.3.1 updates are now available globally and can be installed through the Settings >General >Software Update menu. Apple implemented USB Restricted Mode approximately seven years ago to enhance data security on its devices. This feature effectively blocks external USB devices from establishing a data connection with an iPhone, acting as a crucial safeguard against devices used by law enforcement agencies, such as those offered by Cellebrite, to bypass security measures and extract data from locked iPhones. In November, Apple further strengthened USB Restricted Mode with an inactivity reboot system introduced alongside the iOS 18.1 update. This system automatically reboots iPhones that remain locked for extended periods, triggering a Before First Unlock (BFU) state that encrypts device files. Only after the device is unlocked is a decryption key generated, allowing access to the stored data. Even Cellebrite, a company frequently employed by law enforcement agencies to access locked devices, advises investigators to keep seized devices powered on to facilitate meaningful data extraction.
APPLE Iphones Ipads SECURITY UPDATE VULNERABILITY USB RESTRICTED MODE ACCESSIBILITY FRAMEWORK
United States Latest News, United States Headlines
Similar News:You can also read news stories similar to this one that we have collected from other news sources.
Apple Patches Critical Zero-Day Vulnerability Exploited for Over a YearApple has discovered and patched a critical zero-day vulnerability in iOS that allowed hackers to exploit devices for over a year. The vulnerability, tracked as CVE-2025-24085, resided in Apple’s Core Media framework and could have allowed attackers to execute unstable code and gain elevated privileges. The vulnerability affected iPhones dating back to the 2018 XS model, as well as newer iPads, Macs, and even the Vision Pro headset.
Read more »
Apple Patches Critical Vulnerability in iOS 17.3.1 and iPadOS 18.3.1Apple has released emergency software updates for iOS and iPadOS to address a serious security vulnerability that could have allowed attackers to bypass the USB Restricted Mode and potentially steal user data. The updates also include bug fixes and other improvements.
Read more »
Apple Issues iOS 18.3 Update with Critical Security PatchesApple has released iOS 18.3, urging users to update their iPhones immediately due to a significant number of security vulnerabilities addressed. The update fixes 29 security flaws, including one that has been actively exploited in the wild. Apple emphasizes the importance of updating to mitigate the risk of attacks. iOS 18.3 also includes bug fixes for Kernel vulnerabilities and WebKit, among other improvements.
Read more »
Microsoft Warns of Critical Outlook Vulnerability Exploitable by HackersMicrosoft has issued a security alert warning users about a critical vulnerability in the Outlook email client that hackers can exploit to distribute malware. The vulnerability, CVE-2025-21298, allows attackers to execute remote code on a victim's machine by sending specially crafted emails. Microsoft has released a patch for the issue and urges users to apply it immediately. In the meantime, users are advised to view emails in plain text and restrict NTLM traffic.
Read more »
DeepSeek Exposes User Data Due to Critical Security VulnerabilityOpen-source AI company DeepSeek has been criticized for a major security flaw that allowed researchers at Wiz to easily access unencrypted user data. The vulnerability exposed details about the company's model infrastructure and raised concerns about the security of sensitive information.
Read more »
Pixel February Update Fixes Critical Vulnerability and Offers MoreThe February Pixel update addresses several issues, including a critical vulnerability in the Linux kernel that could allow attackers to take full control of a device. The update also includes patches for 24 security issues and fixes problems with Bluetooth connectivity and Android Auto audio output.
Read more »