Apple has released an urgent security update to address a previously unknown vulnerability (CVE-2025-24200) that may have been exploited in targeted attacks against specific individuals. The affected devices include iPhone XS and later, iPad Pro 13-inch and later, iPad Air 3rd generation and later, and other models.
The vulnerability allows an attacker to disable USB Restricted Mode on a locked device, requiring physical access to the device. This feature was introduced in iOS 11.4.1 in July 2018 to make it harder for attackers to unlock devices.
To enhance data security, enable USB Restricted Mode by going to Settings > Face ID & Passcode or Touch ID & Passcode > (USB) Accessories and toggling off (grey) the (USB) Accessories option. Note that disabling this feature will add no extra protection against unauthorized access.
The vulnerability is similar to those exploited in commercial spyware, such as Pegasus and Paragon. However, once details of a specific vulnerability are published, other cybercriminals may attempt to copy and use it.
To stay safe, users are advised to install the latest software update immediately. Apple has also recommended enabling Automatic Updates to ensure timely security patching.
Source: https://www.malwarebytes.com/blog/news/2025/02/apple-fixes-zero-day-vulnerability-used-in-extremely-sophisticated-attack