Apple

Apple revealed critical updates on April 16, 2025, for iOS, iPadOS, macOS, and visionOS, addressing two zero-day vulnerabilities (CVE-2025-24200 and CVE-2025-24201) used in sophisticated attacks against specific targets. The first, CVE-2025-24200, allowed attackers to bypass USB Restricted Mode with physical access to the device, facilitating data extraction. The second, CVE-2025-24201, exploited WebKit for remote code execution. The attacks targeted users of older iOS versions, suggesting coordination by actors with advanced technical resources. Apple recommends immediate updates, especially for vulnerable users.