Skip to content

JOBUZO

  • News
  • Indonesia
  • Toggle search form
Apple fixes new iPhone zero-day bug used in Paragon spyware hacks

Apple fixes new iPhone zero-day bug used in Paragon spyware hacks

Posted on 12 June 2025 By jobuzo

Researchers revealed on Thursday that two European journalists had their iPhones hacked with spyware made by Paragon. Apple now says it has fixed the bug that was used to hack their phones.

Citizen Lab wrote in its report, shared with TechCrunch ahead of its publication, that Apple had told its researchers that the flaw exploited in the attacks had been “mitigated in iOS 18.3.1,” a software update for iPhones released on February 10. 

Until this week, the advisory of that security update only mentioned one unrelated flaw, which allowed attackers to disable an iPhone security mechanism that makes it harder to unlock phones. 

On Thursday, however, Apple updated its February 10 advisory to include details about a new flaw, which was also fixed at the time, but not publicized. 

“A logic issue existed when processing a maliciously crafted photo or video shared via an iCloud Link. Apple is aware of a report that this issue may have been exploited in an extremely sophisticated attack against specific targeted individuals,” reads the now-updated advisory. 

In the final version of its report published Thursday, Citizen Lab confirmed this is the flaw used against Italian journalist Ciro Pellegrino and an unnamed “prominent” European journalist.

Contact Us

News :<div>12 weeks' jail for school IT support technician who took upskirt videos of teachers</div>

Do you have more information Paragon? Or other spyware makers? From a non-work device and network, you can contact Lorenzo Franceschi-Bicchierai securely on Signal at +1 917 257 1382, or via Telegram and Keybase @lorenzofb, or email.

It’s unclear why Apple did not disclose the existence of this patched flaw until four months after the release of the iOS update, and an Apple spokesperson did not respond to a request for comment seeking clarity.

The Paragon spyware scandal began in January, when WhatsApp notified around 90 of its users, including journalists and human rights activists, that they had been targeted with spyware made by Paragon, dubbed Graphite. 

Then, at the end of April, several iPhone users received a notification from Apple alerting them that they had been the targets of mercenary spyware. The alert did not mention the spyware company behind the hacking campaign. 

On Thursday, Citizen Lab published its findings confirming that two journalists who had received that Apple notification were hacked with Paragon’s spyware. 

It’s unclear if all the Apple users who received the notification were also targeted with Graphite. The Apple alert said that “today’s notification is being sent to affected users in 100 countries.”

News :Migrant acquitted in first trial over US border military zones

Apple fixes new iPhone zero-day bug used in Paragon spyware hacks


News

Post navigation

Previous Post: ‘Heartbreaking beyond words’: More than 200 people killed in Air India plane crash
Next Post: Razer’s new Kishi V3 controllers can fit up to a 13-inch iPad

Related Posts

Merab Dvalishvili aims to extend winning streak against Petr Yan in UFC 323 News
How to Play Xbox Games on Your iPad Without a Console How to Play Xbox Games on Your iPad Without a Console News
20 Palestinians, including 5 journalists, killed in Israeli attack on hospital in S. Gaza 20 Palestinians, including 5 journalists, killed in Israeli attack on hospital in S. Gaza News

Latest

  • Crowd surge at Hindu festival in India leaves 1 dead and many hospitalized
  • UK intelligence watchdog raps MI5 for lying to courts about a neo-Nazi informer
  • An OLED iPad Mini is Reportedly Arriving but Includes a Catch
  • South Korean province sets up teacher protection agency inspired by Netflix hit ‘Teach You a Lesson’
  • Daily roundup: 31 oversubscribed primary schools in Phase 2A to conduct balloting — and other top stories today
  • Let This Be Your Easy Guide to What the Easy A Cast Is Up to Now
  • Ultrahuman’s former hardware VP raises $5.5M for devices that control AI agents, not just record you
  • Meta now alerts parents if their teen discussed suicide or self-harm with its AI chatbot
  • Tensions spur ultra-rich to diversify across Asia
  • China memory-chip maker CXMT set for mega IPO

Copyright © 2025 JOBUZO. Disclaimers | Privacy Policies

Powered by PressBook Masonry Blogs