All Topics
All Topics
Technology
Technology
AI
AI
Business
Business
Entertainment
Entertainment
News
News
Programming
Programming
Security
Security
Science
Science
Design
Design
Environment
Environment
Finance
Finance
Crypto
Crypto
Politics
Politics
Sports
Sports
Education
Education
Gaming
Gaming
Art
Art
Music
Music
Health
Health
Books
Books
Food
Food
Travel
Travel
Personal
Personal
Bluesky
Twitter

Unfixable security flaw discovered in older iPhones with A12 and A13 chips

By

Lance Whitney

2h ago· 4 min readenNews

Summary

A cybersecurity firm, Paradigm Shift, discovered a security vulnerability called "usbliter8" affecting older iPhone models with Apple's A12 or A13 chips (iPhone XS, XR, 11, and SE 2nd gen). The flaw resides in the boot ROM (SecureROM) code, which executes before the operating system loads, making it unfixable through software updates since it's hardware-based. The vulnerability could allow attackers with physical access to the device to execute arbitrary code. Apple cannot patch this flaw, leaving affected users with limited options for protection.

Source

bskyUnfixable security flaw discovered in older iPhones with A12 and A13 chipszdnet.com

Key quotes

· 3 pulled
Do you still use an iPhone 11, XS, XR, or SE? If so, I have some bad news.
Another security flaw has been discovered, and Apple can't fix this with one of its typical updates.
The flaw affects the boot ROM, aka SecureROM, code of an iPhone, which executes before the operating system.
Snippet from the RSS feed
Here's how to tell if your device is at risk and what to do about it.

You might also wanna read

Critical Hardware Vulnerability Found in Apple A16 Bionic Chip Enabling Debug Logic on Production Devices

This repository documents a critical hardware vulnerability in Apple's A16 Bionic chip where debug logic meant for development silicon is ex

github.com·9mo ago

Apple patches critical iOS zero-day vulnerability exploited in targeted attacks

Apple has patched a critical zero-day vulnerability (CVE-2026-20700) affecting every iOS version since 1.0, discovered by Google's Threat An

theregister.com·4mo ago

Exploit Enables Modification of iOS MobileGestalt.plist to Unlock iPad Features on iPhone

The article describes how a newly released exploit (itunesstored & bookassetd sbx escape) enables modification of the MobileGestalt.plist fi

idevicecentral.com·7mo ago

Apple Releases iOS 15.8.7 and iPadOS 15.8.7 Security Updates Addressing Multiple Vulnerabilities

Apple has released iOS 15.8.7 and iPadOS 15.8.7 security updates addressing multiple vulnerabilities across various system components. The u

support.apple.com·3mo ago

DarkSword iPhone Hacking Tool Discovered Targeting iOS 18 Devices Through Infected Websites

A powerful iPhone hacking technique called DarkSword has been discovered being used by Russian hackers to target iOS devices. The tool can t

wired.com·3mo ago

Cisco discloses actively exploited zero-day affecting up to 2 million IOS and IOS XE devices

Cisco disclosed an actively exploited zero-day vulnerability (CVE-2025-20352) affecting all supported versions of Cisco IOS and IOS XE, pote

arstechnica.com·9mo ago

Comments

Sign in to join the conversation.

No comments yet. Be the first.