Apple has released an emergency security update after discovering a serious zero-click vulnerability had exposed millions of users of its iPhone, iPad, and Mac devices.  

The vulnerability, classified as CVE-2025-43300, was in the Image I/O framework that handles image processing on Apple devices. 

Security specialists raised special concern for crypto holders as the exploit would allow hackers to hijack wallets and drain funds without the victim’s action. 

Apple confirmed the vulnerability had already been leveraged in extremely targeted, advanced attacks and advised users to update immediately. 

Exploit Used Malicious Images to Take Over Devices

The vulnerability consisted of a memory corruption issue that was initiated by maliciously crafted images. 

According to Apple’s advisory, an attacker could exploit any one image file sent through iMessage, email, or any other app, to execute arbitrary code and fully compromise a device.

This attack was much worse than a typical phishing attempt, where a target has to click on or download an attachment. 

It was far more effective in that the user was not required to click or download, which posed much greater danger. 

Apple presented the zero-click exploit as having been previously used against “extremely sophisticated attacks” of a small, identifiable number of individuals, but did not disclose the intended targets.

Also Read: Judge Rules Apple Violated Antitrust Order, Frees Crypto Apps From Payment Limits

Critical Update Covers iPhones, iPads, and Macs

In response to the danger, Apple announced patches under iOS 18.6.2 and iPadOS 18.6.2, with matching fixes for macOS Sequoia 15.6.1, Sonoma 14.7.8, and Ventura 13.7.8. 

The updates comprise all the iPhones from XS onwards, up to and including the iPhone 16, and also iPad Pro models, iPad Air (3rd generation and newer), iPads (6th generation and newer), and iPad Mini (5th generation and newer). 

On the Mac side, all users with the three previous versions of macOS have also been included. 

Apple advised that customers not wait for automatic updates, but manually install the patch instead to minimize the risk of exposure. 

Also Read: Bybit Launches Stock Trading for Major Stocks Like Apple, Amazon, Meta, and 75 More Using USDT

Prior Hacks Show Active Targeting of Apple’s Crypto Users

The zero-click exploit is the latest instance of Apple users in and around crypto being targeted.  

On June 20, UnoCrypto published a report on a significant leak of 16 billion user credentials that affected Apple, Google, Facebook, and other major tech companies’ platforms, potentially subjecting crypto holders to account takeover.

The following month, on July 3, we reported a SentinelLab report about North Korean hackers using “NimDoor”, a rare Nim-based malware, that gave attackers backdoor access and control of Apple devices to steal crypto credentials and bypass antivirus programs. 

With the new and patched exploit, these events highlight how Apple users, especially within crypto, remain high-value targets for sophisticated global cybercriminals.

Also Read: Michael Saylor Says “Apple should buy Bitcoin” In Response To Apple Stock Repurchase Plan