Sign In
By signing in or creating an account, you agree with Associated Broadcasting Company's Terms & Conditions and Privacy Policy.
By signing in or creating an account, you agree with Associated Broadcasting Company's Terms & Conditions and Privacy Policy.
New Delhi: Apple has pushed out another round of emergency updates, and this one is not the kind you can put off until the weekend. On August 20, the company confirmed fixing a zero-day flaw that was already being exploited in the wild. That means someone, somewhere, was using it to break into real devices.
The issue, tracked as CVE-2025-43300, lives inside the ImageIO framework. In plain words, just opening a carefully crafted image could give hackers a way into your iPhone, iPad, or Mac. Apple admitted the bug was linked to "memory corruption" and quietly patched it with the latest iOS, iPadOS and macOS updates.
Apple’s advisory was short and to the point. It said that “processing a malicious image file may result in memory corruption” and confirmed that attackers were actively exploiting the issue. The company didn’t say who was behind the attacks, but its careful wording suggested something bigger than regular cybercrime. Reports hint this could be the work of a spyware vendor targeting specific individuals.
Interestingly, Apple also noted that the vulnerability was discovered internally. That means we might not get many technical details anytime soon.
The bug was fixed across both iOS and macOS. Here’s a quick look at the versions that carry the fix:
| Platform | Updated Version |
|---|---|
| iOS | 18.6.2 |
| iPadOS | 18.6.2, 17.7.10 |
| macOS Sequoia | 15.6.1 |
| macOS Sonoma | 14.7.8 |
| macOS Ventura | 13.7.8 |
If your device hasn’t been updated to these versions, you should probably stop reading this on Safari and hit that update button now.
Apple stressed that the attacks were “highly targeted,” which usually translates to journalists, activists, or government officials being in the crosshairs. But here’s the thing: the same update that protects them also protects you. Exploits have a habit of trickling down. Once a method is known, copycats often follow.
You don’t need to wait for Wi-Fi at home. Even if you’re on mobile data, the download is worth it. Think of it as locking your front door after finding out burglars have a copy of the keys.
