Apple Issues Urgent Security Update for iPhones and iPads

Apple has issued an urgent security update for iPhones and iPads following the discovery of critical vulnerabilities that could put user data at risk. On February 10, the company rolled out emergency updates to address these security flaws, urging users to update their devices as soon as possible.

Security Vulnerability Discovered by Citizen Lab

The security issue was first identified by Bill Marczak from The Citizen Lab at the University of Toronto's Munk School. While Apple quickly responded with a fix, the company has not officially confirmed the extent of the vulnerabilities or how they were discovered. Investigations into the issue are still ongoing.

iOS 18.3.1 Update Patches USB Restricted Mode Flaw

A report from Forbes highlights that the emergency update addresses a flaw related to iOS 18.3.1's accessibility settings. Specifically, it fixes an issue where USB Restricted Mode could be disabled through physical attacks on a locked iPhone, potentially allowing unauthorized access to the device.

Apple introduced USB Restricted Mode with iOS 11.4.1 nearly seven years ago as a security measure to prevent unauthorized data access through USB-C and Lightning ports. However, security researchers raised concerns that tools like GrayKey by GrayShift could bypass this protection, leading Apple to release an emergency fix.

Which Devices Are Affected?

The security update is available for the following devices:

iPhone XS and later

iPad Pro (13-inch, 12.9-inch - 3rd generation and later)

iPad Pro (11-inch - 1st generation and later)

iPad Air (3rd generation and later)

iPad (7th generation and later)

iPad mini (5th generation and later)

Users are advised to install the latest iOS and iPadOS updates immediately to protect their devices from potential security threats.

Android Users Also Advised to Update Their Devices

Apple users aren't the only ones facing security concerns. The Ministry of Electronics and Information Technology (MeitY) has issued a warning for Android users, particularly those running Android 12 and newer versions.

According to CERT-In (Indian Computer Emergency Response Team), vulnerabilities in Android's framework and chipset components could leave devices exposed to cyberattacks. Hackers could exploit these flaws to gain access to sensitive data, take control of the device, execute malicious code, or even launch Denial of Service (DoS) attacks.

To mitigate these risks, CERT-In strongly advises Android users running Android 12 through Android 15 to update their devices to the latest available software version immediately.

With both Apple and Android users facing security threats, installing the latest updates is the best way to stay protected from potential cyberattacks.