Apple started rolling out iOS 18.3.1 on Monday, delivering a crucial security update for supported iPhone models. This update addresses a severe vulnerability that could allow attackers to access an iPhone even when it is locked. Apple has acknowledged that this security loophole may have been actively exploited to target certain users. iPhone owners are strongly advised to install the latest update to safeguard their devices against this threat.
iOS 18.3.1 Update: What Does It Fix?
In the release notes for iOS 18.3.1 and iPadOS 18.3.1, Apple announced that it has addressed a security vulnerability within the Accessibility service of its mobile and tablet platforms. This flaw could have enabled physical attacks on locked devices, potentially allowing attackers to bypass USB Restricted Mode.
USB Restricted Mode, introduced with iOS 11.4.1 in 2018, is designed to prevent data communication with USB accessories unless the device has been unlocked within the past hour. This feature requires users to unlock their devices to establish a connection with any USB accessory.
Apple has acknowledged that this vulnerability may have been exploited in “highly sophisticated attacks” targeting specific individuals. Importantly, exploiting this flaw would require an attacker to have physical access to the affected device.
Apple has acknowledged Bill Marczak, a researcher from The Citizen Lab at the University of Toronto’s Munk School, for discovering the security vulnerability. Marczak has also recommended that users with compatible iPhone and iPad models install the iOS 18.3.1 update, which contains a fix for the issue.
The iOS 18.3.1 update is available for the iPhone 16 series and older models, dating back to the iPhone XS. To download and install the update, users can go to the Settings app, select General, tap on Software Update, and choose Install Now.
