2 hours ago
1
Generally, iPhones are considered much secure than Android devices.
Apple’s closed ecosystem and strict App Store policies bounds the hazard of malware, and its centralized bundle updates guarantee amended security. In contrast, Android’s openness allows users to instal apps from assorted sources, and updates are often rolled retired astatine antithetic times, making it much susceptible to attacks.
However, iPhones aren’t immune to information flaws. Hackers occasionally find ways to exploit them, arsenic seen successful Apple’s latest advisory. The institution precocious discovered that a vulnerability successful iOS had been exploited for implicit a year. While a hole has present been released, reports suggest that hackers whitethorn person already targeted high-value individuals.
GET SECURITY ALERTS, EXPERT TIPS — SIGN UP FOR KURT’S NEWSLETTER — THE CYBERGUY REPORT HERE
A pistillate connected her iPhone. (Kurt "CyberGuy" Knutsson)
What you request to know
Apple has uncovered hackers exploiting a vulnerability successful iOS that appears to person been lingering for much than a year. The vulnerability is simply a "zero-day" flaw, meaning criminals whitethorn person already exploited it, according to the latest information advisory from the company. Zero-day flaws similar this are particularly unsafe due to the fact that they are exploited earlier developers tin contented fixes. Apple confirmed this marks its archetypal zero-day spot of 2025. The vulnerability affects iPhones dating backmost to 2018’s XS model, arsenic good arsenic newer iPads, Macs, and adjacent the Vision Pro headset.
The vulnerability, tracked arsenic CVE-2025-24085, resides successful Apple’s Core Media framework, a software furniture liable for processing multimedia files. A "use aft free" representation corruption mistake enabled hackers to manipulate the strategy into executing unstable code, granting them elevated privileges to bypass information protocols. Apple’s advisory suggests hackers weaponized the flaw done malicious apps disguised arsenic morganatic media players. These apps apt abused the Core Media model by triggering corrupted files, enabling attackers to infiltrate devices.
The attacks reportedly targeted iOS versions predating 17.2, released successful December 2023, meaning the vulnerability whitethorn person been progressive since precocious 2022. Security experts speculate that hackers focused connected high-value individuals — specified arsenic activists, executives oregon journalists — to debar detection. The prolonged stealth of the run underscores the challenges of identifying sophisticated, narrowly tailored exploits.
This underscores the captious request for you to update your devices to iOS 17.2 oregon later, arsenic these versions see indispensable fixes to safeguard against this actively exploited vulnerability.
Apple's iOS 17.2 update included patches for respective vulnerabilities. (Kurt "CyberGuy" Knutsson)
HOW TO PROTECT YOUR IPHONE & IPAD FROM MALWARE
Apple’s effect to the vulnerability
In response, Apple has released fixes crossed its ecosystem, including iOS 18.3, macOS Sequoia, watchOS, tvOS and VisionOS. You should update your devices arsenic soon arsenic imaginable to enactment protected. To instal the update connected your iPhone oregon iPad:
- Go to Settings.
- Tap General.
- Click Software Update.
- Click Update Now or Update Tonight.
Pro Tip: I urge you click Update Now and besides crook on Automatic Updates to enactment covered successful the future.
WHAT IS ARTIFICIAL INTELLIGENCE (AI)?
Steps to update bundle connected an iPhone. (Kurt "CyberGuy" Knutsson)
While Apple has patched this issue, it’s a reminder that staying connected apical of updates is key. Hackers are ever looking for information gaps, truthful keeping your bundle up to day is 1 of the champion ways to enactment safe.
SCAMMERS FOUND A SNEAKY WAY TO BYPASS YOUR IPHONE'S SAFETY FEATURES
7 ways to support your iPhone safe
Protecting your iPhone requires proactive information measures. By pursuing these 7 indispensable steps, you tin importantly trim the hazard of cyber threats and support your idiosyncratic accusation secure.
1. Keep your iPhone updated: I can’t accidental this enough. Updating your iPhone regularly is 1 of the astir effectual ways to support it from information threats. Apple often releases updates that hole vulnerabilities, including captious zero-day flaws.
2. Download apps lone from the App Store: To minimize the hazard of installing malware, lone download apps from the authoritative App Store. Apple’s strict app reappraisal process helps forestall malicious apps from being published, but immoderate threats tin inactive gaffe through. Always verify app details, cheque reviews and beryllium cautious astir app permissions earlier installation.
3. Enable lockdown mode for other protection: For those of you who whitethorn beryllium astatine higher risk, specified arsenic journalists oregon executives, Lockdown Mode provides an further furniture of security. This diagnostic limits definite instrumentality functionalities to forestall blase cyberattacks. It tin beryllium turned connected via Settings > Privacy & Security > Lockdown Mode and is particularly utile for those acrophobic astir targeted threats.
4. Enable connection filtering: Use your device's built-in filtering options to benignant messages from chartless senders. This diagnostic allows you to automatically benignant messages from chartless senders, easy filter unread messages and negociate your connection inbox much efficiently. Here are steps:
- Open Settings.
- Scroll down and click Apps.
- Tap Messages.
- Turn on Filter Unknown Senders
GET FOX BUSINESS ON THE GO BY CLICKING HERE
5. Stay cautious of phishing attacks and instal beardown antivirus software: Phishing remains 1 of the astir communal tactics utilized by hackers. Be cautious erstwhile receiving unsolicited messages oregon emails connected your iPhone, particularly those with suspicious links oregon attachments. Always verify the sender earlier opening anything. The champion mode to safeguard yourself from malicious links that instal malware, perchance accessing your backstage information, is to person antivirus bundle installed connected each your devices. This extortion tin besides alert you to phishing emails and ransomware scams, keeping your idiosyncratic accusation and integer assets safe. Get my picks for the champion 2025 antivirus extortion winners for your Windows, Mac, Android and iOS devices.
6. Review your information and privateness settings: Regularly reviewing your iPhone’s information settings tin assistance you support beardown protection. You should besides reappraisal app permissions in Settings > Privacy & Security to restrict entree to delicate data, specified arsenic determination oregon contacts. Enable Face ID oregon Touch ID for unafraid entree and crook connected two-factor authentication (2FA) for Apple ID and different accounts. 2FA adds an other furniture of information to your accounts by requiring a 2nd signifier of verification, specified arsenic a substance connection oregon authentication app, successful summation to your password. This importantly reduces the hazard of unauthorized access, adjacent if your password is compromised.
7. Invest successful idiosyncratic information removal services: By reducing your online footprint, you marque it harder for cybercriminals to get your interaction information, perchance preventing them from sending you deceptive phishing texts and emails successful the archetypal place. While nary work promises to region each your information from the internet, having a removal work is large if you privation to perpetually show and automate the process of removing your accusation from hundreds of sites continuously implicit a longer play of time. Check retired my apical picks for information removal services here.
Kurt’s cardinal takeaway
This iOS vulnerability is simply a superior reminder of the value of staying up to day with bundle updates. If you’re utilizing an iPhone from 2018 oregon later, marque definite you’ve updated to iOS 17.2 oregon aboriginal arsenic soon arsenic possible. Hackers exploited a hidden flaw for implicit a year, utilizing fake media apps to summation entree to devices. While Apple has present patched the issue, the information that it remained undetected for truthful agelong is concerning.
CLICK HERE TO GET THE FOX NEWS APP
Do you deliberation companies similar Apple are doing capable to support you from cyber threats? Let america cognize by penning america at Cyberguy.com/Contact
For much of my tech tips and information alerts, subscribe to my escaped CyberGuy Report Newsletter by heading to Cyberguy.com/Newsletter
Ask Kurt a question oregon fto america cognize what stories you'd similar america to cover.
Follow Kurt connected his societal channels:
Answers to the astir asked CyberGuy questions:
- What is the champion mode to support your Mac, Windows, iPhone and Android devices from getting hacked?
- What is the champion mode to enactment private, unafraid and anonymous portion browsing the web?
- How tin I get escaped of robocalls with apps and information removal services?
- How bash I region my backstage information from the internet?
New from Kurt:
Copyright 2025 CyberGuy.com. All rights reserved.
Kurt "CyberGuy" Knutsson is an award-winning tech writer who has a heavy emotion of technology, cogwheel and gadgets that marque beingness amended with his contributions for Fox News & FOX Business opening mornings connected "FOX & Friends." Got a tech question? Get Kurt’s escaped CyberGuy Newsletter, stock your voice, a communicative thought oregon remark astatine CyberGuy.com.
.png "indianexpress.")
.png "khaleejtimes")
.png "arabnews")
.png "gulfnews"){kind=logo}
English (US) · 
Hindi (IN) ·