Apple just fixed a major zero-day used in ‘sophisticated attacks’ — update your iPhone and iPad right now
Apple has patched a security flaw that could be exploited by hackers or even law enforcement to disable USB Restricted Mode on locked iPhones and iPads.
Apple fixes zero-day exploited in 'extremely sophisticated' attacks
Apple has released emergency security updates to patch a zero-day vulnerability that the company says was exploited in targeted and "extremely sophisticated" attacks.
Apple Mitigates “Extremely Sophisticated” Zero-Day Exploit
The Citizen Lab discovered many of the 20 zero-days patched by Apple in 2023, including the “BlastPass” exploit chain comprising CVE-2023-41064 and CVE-2023-41061, which were used to deliver the Pegasus spyware from blacklisted Israeli firm NSO Group.
Apple issues emergency patches to contain an ‘extremely sophisticated attack’ on targeted individuals
Apple has rolled out emergency security patches after discovering that an “extremely sophisticated attack” exploited a flaw in its USB Restricted Mode, potentially targeting specific individuals.
Apple fixes iPhone and iPad bug used in an ‘extremely sophisticated attack’
On Monday, Apple released updates for its mobile operating systems for iOS and iPadOS, which fixed a flaw that the company said “may have been exploited in an extremely sophisticated attack against specific targeted individuals.”
Apple Patches 'Extremely Sophisticated Attack' That Can Hit iPhones
The emergency iOS 18.3.1 update suggests a law enforcement tool was able to exploit the vulnerability to unlock iPhones that were physically confiscated.
Fortinet warns of new zero-day exploited to hijack firewalls
Fortinet warned today that attackers are exploiting another authentication bypass zero-day bug in FortiOS and FortiProxy to ...
Infosecurity-magazine.com59m
Microsoft Fixes Another Two Actively Exploited Zero-Days
The second actively exploited zero-day vulnerability is CVE-2025-21418 – another EoP bug, but this time in the Windows ...
VeraCore zero-day vulnerabilities exploited in supply chain attacks
Researchers discovered two active exploits of zero-day vulnerabilities in warehouse management software platform VeraCore.
Techopedia14h
Apple’s Zero-Day Exploit Update: Closing a $10M Loophole
Apple's latest zero-day vulnerability highlights the high-stakes battle between hackers and tech giants. Exploits can fetch ...
The Hacker News23h
Apple Patches Actively Exploited iOS Zero-Day CVE-2025-24200 in Emergency Update
Apple released an emergency iOS update to fix CVE-2025-24200, a zero-day flaw exploited to bypass USB Restricted Mode on ...
Apple releases security updates to block iPhone passcode hacking tools, again
Apple released iOS 18.3.1, iPadOS 18.3.1, and iPadOS 17.7.5 today to address a zero-day exploit that might allow attackers to ...
SecurityWeek13d
New Zyxel Zero-Day Under Attack, No Patch Available
GreyNoise reports active exploitation of a newly discovered zero-day vulnerability in Zyxel CPE devices. There are no patches available.
Critical Linux 0-Day Attack Warning: U.S. Government Says Act Now
Although there is a binding operational directive, BOD 22-01, in place that dictates federal agencies must now remediate the ...