Published 1 day ago • loading... • Updated 9 hours ago

New Unpatchable Exploit Targets Apple Devices with A12 and A13 Chips

Security research firm Paradigm Shift today published details of a new BootROM vulnerability affecting Apple's A12 and A13 chips, along with a working proof-of-concept exploit named "usbliter8."
Because the vulnerability exists within the BootROM hardware, it cannot be fixed via software updates, meaning affected devices remain permanently vulnerable. The exploit leverages a hardware bug in the USB controller that cannot be patched.
While A12 devices are straightforward to exploit, the A13 chip requires bypassing Pointer Authentication Codes, a security feature designed to prevent memory tampering. The proof-of-concept project on GitHub has amassed more than 280 stars in just a few hours.
Researchers worked with Apple Product Security on coordinated disclosure before publication. Although "usbliter8" does not directly affect the Secure Enclave, it opens wider attack vectors to compromise it.
This exploit extends the history of "checkm8," a prior BootROM vulnerability released in 2019 that affected older Apple SoCs. Given the unpatchable nature, researchers advise that migrating to newer hardware remains the most effective mitigation for affected users.

Insights by Ground AI

27 Articles

Older iPhones vulnerable to a flaw Apple can’t fix

Researchers have discovered a vulnerability with older iPhones that Apple can't patch.The team at Paradigm Shift, an independent European cybersecurity firm, published its findings on the flaw, which it calls usbliter8, on its blog on Thursday. Researchers exploited flaws in the USB controller and the device's firmware to override the boot process (when the phone turns on) and gain control of the device before iOS loads, and even run unauthorize…

13 hours ago·New York, United States

Read Full Article

Tech Radar

Center

Apple users told to watch out for 'unpatchable' iPhone security issues - here's what we know

The bug is physical and also very difficult to exploit. Still, it can help jailbreak the device and snoop on the data inside.

13 hours ago·United Kingdom

Read Full Article

Tech Spot

Center

The first unpatchable iPhone exploit in six years targets chips still running Apple's latest iOS

Security researchers at Paradigm Shift have published the first iPhone bootROM exploit in years. The process, called usbliter8, targets a hardware-level flaw, which means upgrading to newer hardware is the only real fix.Read Entire Article

23 hours ago

Read Full Article

9to5Mac

Center

New unpatchable exploit targets Apple devices with A12 and A13 chips

Researchers at Paradigm Shift have published the technical details of usbliter8, a new unpatchable iPhone BootROM vulnerability.

1 day ago·Paris, France

Read Full Article

AppleInsider

Center

A12 & A13 Apple devices face an unpatchable SecureROM vulnerability

Security researchers have published a new unpatchable SecureROM exploit for Apple's A12 and A13 chips, extending public BootROM exploitation beyond the devices affected by checkm8.iPhone XRSecurity firm Paradigm Shift disclosed the unpatched exploit, called usbliter8, on June 18. It achieves code execution through a flaw in Apple's USB boot process.The vulnerability affects devices powered by Apple's A12 and A13 chips, including the iPhone XS, i…

1 day ago

Read Full Article

MacRumors

Reposted by

machash.com

Center

Apple's A12 and A13 Chips Facing New Unpatchable Exploit

Security research firm Paradigm Shift today published details of a new BootROM vulnerability affecting Apple's A12 and A13 chips, along with a working...

1 day ago·United States

Read Full Article

Think freely.Subscribe and get full access to Ground NewsSubscriptions start at $9.99/year