Researchers at Paradigm Shift have released a comprehensive report detailing a significant security vulnerability affecting several Apple devices. This issue, termed "usbliter8," is linked to the USB interface and specific Apple silicon chips.
The usbliter8 exploit impacts devices using A12, A13, S4, and S5 chips. This includes the iPhone XR, iPhone XS/XS Max, iPad Air 3, iPad mini 5, iPad 8, second-generation Apple TV 4K, iPhone 11, 11 Pro/11 Pro Max, iPhone SE, iPad 9, Studio Display, and Apple Watch Series 4, Series 5, and Apple Watch SE. Owners of these devices should be vigilant.
The exploit takes advantage of a hardware bug associated with the USB interface and a configuration flaw within the device's firmware, rendering it unpatchable. Fortunately, attackers must have physical access to the device in order to exploit this vulnerability.
When the device is in DFU mode, specific data can be transmitted via USB, which confuses the USB controller and forces it to write data to incorrect memory locations. This process allows the injection of custom code before the iOS operating system even starts, enabling the bypassing of signature checks and the execution of modified system software.
Fortunately, the exploit does not jeopardize the Security Enclave, where sensitive user data such as passcodes are stored securely.
So, what steps should you take? Researchers indicate that while Apple has collaborated with them to see this issue resolved, the most effective strategy to safeguard your data if your device is stolen is to upgrade to a newer model. Notably, devices using the A11 chip and older are not affected by this bug.
Source
