David Bridges
If you haven’t yet taken the crucial step to update your iPhone to the latest version of iOS, we strongly encourage you to prioritize this action immediately. Keeping your device updated is essential for maintaining security and performance.
On Wednesday, April 16, Apple unveiled iOS 18.4.1, a significant release that addresses not just one but two zero-day vulnerabilities that have already been exploited by malicious actors. These vulnerabilities pose serious risks to the security of your device.
In a statement on their official website, Apple acknowledged, “Apple is aware of a report that this issue may have been exploited in an extremely sophisticated attack against specific targeted individuals on iOS.” This highlights the urgency of the update to protect your device from such targeted threats.
Stay Ahead with Mashable Light Speed
According to Apple’s security advisory, the two vulnerabilities specifically affect Core Audio (CVE-2025-31200) and the Return Pointer Authentication Code, commonly referred to as RPAC (CVE-2025-31201). These vulnerabilities are critical to address as they can lead to unauthorized access and manipulation of your device.
Core Audio is an application programming interface (API) utilized by Apple to manage sound processing across its operating systems. The CVE-2025-31200 vulnerability allows an attacker to execute arbitrary code on the device by exploiting vulnerabilities in the processing of audio streams from a maliciously crafted media file. This highlights the importance of maintaining robust security measures.
The Return Pointer Authentication Code is a security feature designed to prevent attackers from altering existing code with the intent to carry out malicious operations. However, the CVE-2025-31201 vulnerability gives threat actors the ability to gain “arbitrary read and write capability,” effectively bypassing this essential security measure, which could have dire implications for user security.
Importantly, these vulnerabilities do not only affect the iPhone; they also pose risks to a variety of other Apple devices, including certain models of the iPad, Apple TV, Apple Vision Pro, and Macs running macOS Sequoia. To combat these vulnerabilities, Apple has rolled out necessary updates for each affected device’s operating system to ensure comprehensive protection against these exploits.
var facebookPixelLoaded = false;
window.addEventListener(‘load’, function(){
document.addEventListener(‘scroll’, facebookPixelScript);
document.addEventListener(‘mousemove’, facebookPixelScript);
})
function facebookPixelScript() {
if (!facebookPixelLoaded) {
facebookPixelLoaded = true;
document.removeEventListener(‘scroll’, facebookPixelScript);
document.removeEventListener(‘mousemove’, facebookPixelScript);
!function(f,b,e,v,n,t,s){if(f.fbq)return;n=f.fbq=function(){n.callMethod?
n.callMethod.apply(n,arguments):n.queue.push(arguments)};if(!f._fbq)f._fbq=n;
n.push=n;n.loaded=!0;n.version=’2.0′;n.queue=[];t=b.createElement(e);t.async=!0;
t.src=v;s=b.getElementsByTagName(e)[0];s.parentNode.insertBefore(t,s)}(window,
document,’script’,’//connect.facebook.net/en_US/fbevents.js’);
fbq(‘init’, ‘1453039084979896’);
fbq(‘track’, “PageView”);
}
}
Daniel Mercer
