Thursday , June 11 2026
zero-day

CVE-2025-24200
Apple releases update of zero-day vuln exploited in the Wild

infosecbulletin Tuesday , February 11 2025 Alert, Vulnerabilities

Apple has issued emergency security updates to fix a zero-day vulnerability, CVE-2025-24200, which is being exploited in targeted attacks on iPhone and iPad users.

The vulnerability lets attackers turn off USB Restricted Mode on a locked device, risking unauthorized access to sensitive data. Apple is aware that this issue may have been used in a highly sophisticated attack on certain individuals.

Security Update: RoguePlanet, BitLocker Bypass, Chromium Zero-Day, and More Critical Threats Uncovered

By infosecbulletin / Wednesday , June 10 2026
Cybersecurity experts found several serious flaws this week in Windows, Chromium, OpenSSL, Microsoft Exchange, and ServiceNow. Some of these flaws...
Read More
Security Update: RoguePlanet, BitLocker Bypass, Chromium Zero-Day, and More Critical Threats Uncovered

73 Microsoft Packages Compromised in Password Stealer Attack

By infosecbulletin / Wednesday , June 10 2026
GitHub disabled 73 repositories in four Microsoft groups: Azure, Azure-Samples, Microsoft, and MicrosoftDocs. Each repo now shows GitHub’s “This repository...
Read More
73 Microsoft Packages Compromised in Password Stealer Attack

New Windows Defender ‘RoguePlanet’ zero-day grants SYSTEM privileges

By infosecbulletin / Wednesday , June 10 2026
A security expert shared a new Microsoft Defender vulnerability called "RoguePlanet" only hours after Microsoft fixed two earlier problems in...
Read More
New Windows Defender ‘RoguePlanet’ zero-day grants SYSTEM privileges

Microsoft June Patches 200 Vulnerabilities including 3 zero days

By infosecbulletin / Wednesday , June 10 2026
Microsoft's June 2026 Patch Tuesday updates fix about 200 security flaws found in the company's products. None of the flaws fixed...
Read More
Microsoft June Patches 200 Vulnerabilities including 3 zero days

World’s first wind power underwater data center is now live

By infosecbulletin / Tuesday , June 9 2026
The first business underwater data center run by offshore wind has started working near Shanghai. Submerged 10 metres under the...
Read More
World’s first wind power underwater data center is now live

VMware Fixed Multiple Flaws Allow Attackers to Inject Malicious Scripts

By infosecbulletin / Tuesday , June 9 2026
Broadcom has revealed three stored cross-site scripting (XSS) flaws that affect VMware Cloud Foundation Operations and some other products. They...
Read More
VMware Fixed Multiple Flaws Allow Attackers to Inject Malicious Scripts

CVE-2026-50751
Check Point VPN 0-day Flaw Exploited in the Wild 

By infosecbulletin / Tuesday , June 9 2026
Check Point Research found that CVE-2026-50751, a serious flaw in Check Point Remote Access VPN and Mobile Access, is being...
Read More
CVE-2026-50751 Check Point VPN 0-day Flaw Exploited in the Wild 

AI-designed First ‘universal vaccine’ tested in humans

By infosecbulletin / Monday , June 8 2026
AI helped to make a new kind of vaccine that can protect people from many types of viruses and stop...
Read More
AI-designed First ‘universal vaccine’ tested in humans

China Unveils First Prefabricated Data Center Base, Reducing Construction Time by 70%

By infosecbulletin / Sunday , June 7 2026
The world's first prefabricated computing power center base officially began operation on Saturday in Qingdao City, east China's Shandong Province,...
Read More
China Unveils First Prefabricated Data Center Base, Reducing Construction Time by 70%

Hacker now exploits recently patched SolarWinds Serv-U flaw

By infosecbulletin / Saturday , June 6 2026
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) said today that hackers are using a newly fixed serious SolarWinds Serv-U...
Read More
Hacker now exploits recently patched SolarWinds Serv-U flaw

The company fixed the vulnerability in iOS 18.3.1 and iPadOS 18.3.1 by enhancing state management.

The zero-day vulnerability impacts the following devices:

iPhone XS and later
iPad Pro 13-inch
iPad Pro 12.9-inch (3rd generation and later)
iPad Pro 11-inch (1st generation and later)
iPad Air (3rd generation and later)
iPad (7th generation and later)
iPad mini (5th generation and later)

USB Restricted Mode helps keep your data safe by blocking USB access if your device has been locked for over an hour.

This feature blocks unauthorized access to locked iOS devices to prevent law enforcement from using forensic software. However, a recent vulnerability lets attackers bypass this protection.

Bill Marczak from Citizen Lab, a cybersecurity research group at the University of Toronto, discovered the vulnerability. Citizen Lab is known for identifying advanced cyberattacks.

Apple urges the users to install security updates iOS 18.3.1 and iPadOS 18.3.1 right away to fix the CVE-2025-24200 vulnerability and enhance security.

SAML Bypass Auth on GitHub Enterprise Servers to Login

Check Also

Check Point

CVE-2026-50751
Check Point VPN 0-day Flaw Exploited in the Wild 

Check Point Research found that CVE-2026-50751, a serious flaw in Check Point Remote Access VPN …

Mail: [email protected]
© Copyright 2026, All Rights Reserved InfoSecBulletin