Apple released an emergency security update to patch a vulnerability that allows sophisticated attackers to bypass iPhone security features through physical access to locked devices.
Updates to iOS 18.3.1 and iPados 18.3.1 fixes defects that could disable USB restriction mode. This is an important security feature introduced in 2018 to prevent data access through the iPhone USB port when the device remains locked for a long time.
“Apple is aware of reports that this issue could have been exploited in a highly sophisticated attack on a particular targeted individual,” the company said in its security advisory. The vulnerability was discovered and reported by Bill Marczak of Citizen Lab, a research group known for investigating surveillance techniques.
Security experts suggest that the exploit may be used in forensic tools like Cellebrite, which provides iPhone unlocking capabilities to law enforcement agencies around the world. Such tools have faced criticism after reports of misuse by authorities targeting activists and journalists.
This attack requires physical possession of the device and indicates that it is likely to be used in target manipulation rather than extensive attacks. This vulnerability allowed an attacker to bypass Apple’s USB restriction mode. This blocks data transmission over a USB connection if your iPhone is not unlocked for an hour.
This patch comes months after Apple introduced additional security features to iOS 18, automatically restarting the inactive device after 72 hours, requiring a passcode upon restart.
This update is available on iPhone XS and later models along with recent iPad Pro, iPad Air and iPad Mini devices. Users can install security patches by going to Device Settings > General > Software Updates. Apple recommends immediate installation to protect against potential exploitation.
The company also released updates for the Mac, Apple Watch and Vision Pro platforms, but security details for these updates were not available immediately.
