The vulnerability targets the initial code executed upon powering an iPhone, effectively undermining the device’s primary line of defense. By exploiting this flaw, which requires physical connection to the handset, researchers or malicious actors can bypass critical security checks. While the discovery is significant, it does not grant immediate access to user data; successful exploitation typically requires chaining this bug with additional vulnerabilities to achieve a full jailbreak.
In section Startups & Technology
Unpatchable Boot ROM flaw exposes older iPhone models
Barcelona-based cybersecurity firm Paradigm Shift has released technical details and a proof-of-concept for a vulnerability affecting Apple’s A12 and A13 chips. Dubbed "usbliter8," the flaw resides in the device's Boot ROM, meaning it cannot be fixed via software updates, potentially facilitating unauthorized access to hardware produced between 2018 and 2019.
Because the flaw exists in immutable hardware, the only definitive defense is hardware migration. The release of this information provides a rare look into the methods used by firms like Cellebrite and Magnet Forensics, which often develop proprietary tools to assist law enforcement. Historically, public jailbreaks served as a gateway for security research, but such releases have dwindled as researchers prioritize keeping valuable exploits private to avoid Apple’s patching cycles. Paradigm Shift has remained silent regarding the public disclosure of their findings.
Comments (0)
No comments yet. Be the first!