InfoSecBulletin Cybersecurity for mankind
CISA has issued an urgent warning about a critical zero-day vulnerability in Apple iOS and iPadOS, known as CVE-2025-24200, which is currently being exploited in targeted attacks.
An authorization bypass flaw in Apple’s USB Restricted Mode allows attackers with physical access to turn off security protections on locked devices, risking exposure of sensitive data. The flaw is due to an incorrect authorization vulnerability (CWE-863) in Apple’s mobile operating systems.
FBI investigating cyberattack at Oracle, Bloomberg News reports
OpenAI Offering $100K Bounties for Critical Vulns
Splunk Alert User RCE and Data Leak Vulns
CIRT alert Situational Awareness for Eid Holidays
Cyberattack on Malaysian airports: PM rejected $10 million ransom
Micropatches released for Windows zero-day leaking NTLM hashes
VMware Patches Authentication Bypass Flaw in Windows Tool
IngressNightmare
Over 40% of cloud environments are vulnerable to RCE
(CVE-2025-29927)
Urgently Patch Your Next.js for Authorization Bypass
Oracle refutes breach after hacker claims 6 million data theft
Attackers can disable USB Restricted Mode, a security feature that limits USB access for locked devices after an hour of inactivity. This allows them to bypass protections against unauthorized data transfers and brute-force passcode attempts.
This vulnerability is especially worrisome for high-risk individuals like journalists, activists, and corporate executives, as their devices often hold sensitive information.
CISA confirmed the vulnerability is actively being exploited, but its connection to ransomware campaigns is not yet verified.
The agency included the flaw in its Known Exploited Vulnerabilities (KEV) catalog on February 12, 2025, requiring federal agencies to implement mitigations by March 5, 2025. Private-sector organizations and individuals are also urged to take similar action.
Apple has not confirmed if a patch is being developed, but CISA advises users to apply updates as soon as they’re available.
