Apple released an emergency iOS update to fix CVE-2025-24200, a zero-day flaw exploited to bypass USB Restricted Mode on locked devices in sophisticat

Apple has patched a security flaw that could be exploited by hackers or even law enforcement to disable USB Restricted Mode on locked iPhones and iPads.

The Citizen Lab discovered many of the 20 zero-days patched by Apple in 2023, including the “BlastPass” exploit chain comprising CVE-2023-41064 and CVE-2023-41061, which were used to deliver the Pegasus spyware from blacklisted Israeli firm NSO Group.

Apple has released emergency security updates to patch a zero-day vulnerability that the company says was exploited in targeted and "extremely sophisticated" attacks.

Apple released iOS 18.3.1, iPadOS 18.3.1, and iPadOS 17.7.5 today to address a zero-day exploit that might allow attackers to access data on a locked device.

Apple has rolled out emergency security patches after discovering that an “extremely sophisticated attack” exploited a flaw in its USB Restricted Mode, potentially targeting specific individuals.

On Monday, Apple released updates for its mobile operating systems for iOS and iPadOS, which fixed a flaw that the company said “may have been exploited in an extremely sophisticated attack against specific targeted individuals.”

Apple is aware of a report that this issue may have been exploited in an extremely sophisticated attack against specific targeted individuals,” the company warned.