Apple just released an emergency security update for a flaw used in an ‘extremely sophisticated attack’ — update your devices right now

• Copy link
• Facebook
• X
• Reddit
• Email

Share this article

0

Join the conversation

Follow us

Add us as a preferred source on Google

Newsletter

Get the Tom's Guide Newsletter

Here at Tom’s Guide our expert editors are committed to bringing you the best news, reviews and guides to help you stay informed and ahead of the curve!

Become a Member in Seconds

Unlock instant access to exclusive member features.

Contact me with news and offers from other Future brands Receive email from us on behalf of our trusted partners or sponsors

---

By submitting your information you agree to the Terms & Conditions and Privacy Policy and are aged 16 or over.

You are now subscribed

Your newsletter sign-up was successful

---

Want to add more newsletters?

Daily (Mon-Sun)

Tom's Guide Daily

Sign up to get the latest updates on all of your favorite content! From cutting-edge tech news and the hottest streaming buzz to unbeatable deals on the best products and in-depth reviews, we’ve got you covered.

Signup +

Weekly on Thursday

Tom's AI Guide

Be AI savvy with your weekly newsletter summing up all the biggest AI news you need to know. Plus, analysis from our AI editor and tips on how to use the latest AI tools!

Signup +

Weekly on Friday

Tom's iGuide

Unlock the vast world of Apple news straight to your inbox. With coverage on everything from exciting product launches to essential software updates, this is your go-to source for the latest updates on all the best Apple content.

Signup +

Weekly on Monday

Tom's Streaming Guide

Our weekly newsletter is expertly crafted to immerse you in the world of streaming. Stay updated on the latest releases and our top recommendations across your favorite streaming platforms.

Signup +

---

Join the club

Get full access to premium articles, exclusive features and a growing list of member rewards.

Explore

---

An account already exists for this email address, please log in.

Subscribe to our newsletter

Apple has patched its third zero-day flaw of the year with a new emergency security update for iPhones, iPads, Macs and its other devices.

As reported by BleepingComputer, the vulnerability (tracked as CVE-2025-24201) was discovered in the WebKit cross-platform browser engine used in Safari and many other of the company’s apps across iOS, macOS and its other platforms.

The reason this particular zero-day stands out from the rest discovered this year is that it was reportedly used in “an extremely sophisticated attack” according to a security bulletin put out by Apple. If exploited using maliciously crafted web content, this flaw could allow hackers to break out of WebKit’s protective sandbox and access other parts of your iPhone or Mac’s operating system.

Here’s everything you need to know about this new zero-day including which Apple devices are impacted along with some tips and tricks on how you can keep your iPhone, Mac, iPad and even your Vision Pro headset safe from hackers.

Impacted Apple devices

Just like it usually does, Apple is holding back most of the details regarding this flaw including who discovered it and which individuals were targeted in the extremely sophisticated attack that exploited it. The reason for this is that the company wants to give its customers plenty of time to patch their devices.

Since this zero-day was discovered in WebKit, the list of impacted devices is quite long, especially as both new and older Apple devices are vulnerable, including:

• iPhone XS and later
• Macs running macOS Sequoia
• iPad Pro 13-inch
• iPad Pro 12.9-inch (3rd gen and later)
• iPad Pro 11-inch (1st gen and later)
• iPad (7th gen and later)
• iPad mini (5th gen and later)
• Apple Vision Pro

If you have any of these devices and if you’re an Apple user chances are you do, you’re going to want to download and install the company’s latest emergency security update as soon as possible.

Even though that extremely sophisticated attack likely targeted high-value individuals like CEOs and government officials, hackers usually start at the top and work their way down when it comes to using a zero-day like this in their attacks.

How to keep your iPhone and Mac safe from hackers

Apple devices may be known for being safer than their Android and Windows counterparts but now that they’ve become increasingly popular, hackers are going out of their way to target them.

For this reason, you want to download and install any security updates that Apple releases as soon as they become available. Hackers love to go after low-hanging fruit and in this case, that means users who haven’t updated their devices yet even though a patch is available.

As for staying safe from hackers, practicing good cyber hygiene will only get you so far which is why I recommend using one of the best Mac antivirus software solutions for extra protection. There’s no iPhone equivalent to the best Android antivirus apps but Intego’s antivirus software for Mac can scan your iPhone or iPad for malware when connected to a Mac via USB cable.

Just like Google and Microsoft do, Apple fixes a ton of new zero-day flaws each year. Last year there were only six of them but back in 2023, it patched a total of 20 zero-days exploited in attacks. This is why it’s of the utmost importance that you take the time to update your Apple devices when new security updates are released.

More from Tom's Guide

• Toll road scams are worse than ever — what to look for and how to stay safe
• More than 3.3 million people hit in massive employee screening data breach
• Google Docs under attack from info-stealing malware — how to keep your data and your emails safe