Apple has issued an urgent security warning for iPhone and iPad users, advising immediate updates to protect against a sophisticated cyber threat. The vulnerability, identified as CVE-2025-24200, allows unauthorized access to locked devices, potentially enabling cybercriminals to extract data without bypassing passcodes. This flaw affects devices including iPhone XS and later models, as well as various iPad versions. Apple has released iOS 18.3.1 and iPadOS 18.3.1 to address this issue.
Key Details:
-
Affected Devices: iPhone XS and newer, iPad Pro (13-inch, 12.9-inch 3rd generation and later, 11-inch 1st generation and later), iPad Air 3rd generation and later, iPad 7th generation and later, iPad mini 5th generation …
-
Required Action: Users should update their devices to iOS 18.3 … or iPadOS 18. … immediately.
-
Security Implications: The vulnerability could disable USB Restricted Mode, a feature designed to prevent unauthorized data extraction tools from accessing device data. This mode was introduced to counteract hacking tools like GrayKey, used by law enforcement to access data on mobile devices.
Recommendations:
-
Update Devices: Navigate to Settings > General > Software Update to install the latest updates.
-
Enable USB Restricted Mode: Ensure this feature is activated to prevent unauthorized data access via USB connections.
-
Exercise Caution: Be vigilant against phishing attempts and avoid clicking on suspicious links or attachments.