Apple has released emergency security updates to address a critical “Zero-Day” vulnerability known as CVE-2025-43300, affecting iPhones, iPads and Macs.
A zero-day attack exploits a software vulnerability for which there is no existing fix, giving the attackers a window of opportunity before a defense or patch is built.
In this case, the emergency patch is being released in a new operating system update, iOS 18.6.2., and Apple has warned all iPhone users that they are at risk until they update.
The operating system flaw, as noted on PCMag.com, resides in the Image I/O framework, which handles image processing across Apple devises.
“Apple is aware of a report that this issue may have been exploited in an extremely sophisticated attack against specific targeted individuals,” Apple stated, according to the report.
The report provides details for the threat that, writing that an “elite hacking group, possibly a spyware developer, has been delivering the attack through images secretly rigged to abuse the flaw.”
The images, according to the report, could be delivered in an email or text message.
The report states that along the lines of the same mishap, Apple patched a technology flaw in April that used maliciously crafted media files to trigger a memory corruption within the software for iOS and macOS.
If you purchase a product or register for an account through a link on our site, we may receive compensation. By using this site, you consent to our User Agreement and agree that your clicks, interactions, and personal information may be collected, recorded, and/or stored by us and social media and other third-party partners in accordance with our Privacy Policy.
Source link
#Apple #warning #iPhone #users #vulnerable #ZeroDay #attack #dont #update