iOS 18.3.1 Update Rolls Out with Critical Fix for USB Restricted Mode Vulnerability

iOS 18.3.1 began rolling out to users on Monday, delivering a crucial security patch for supported iPhone models. The update addresses a critical vulnerability that allowed attackers to gain access to an iPhone even when it was locked. Apple has confirmed that this security flaw may have been actively exploited to target certain individuals. iPhone users are strongly advised to update to the latest iOS version to secure their devices against this threat.

Figure 1. iOS 18.3.1 Update Released to Fix Critical USB Security Vulnerability Under Active Exploitation.

Apple Patches Accessibility Service Vulnerability in iOS 18.3.1

According to Apple’s release notes for iOS 18.3.1 and iPadOS 18.3.1, the company has fixed a vulnerability within the Accessibility service that affected both mobile and tablet devices. This flaw enabled physical attacks on locked devices, potentially disabling USB Restricted Mode—a security feature introduced with iOS 11.4.1 in 2018. USB Restricted Mode is designed to block all data communication with USB accessories unless the device has been unlocked within the past hour. This update ensures the continued integrity of that security measure. Figure 1 shows iOS 18.3.1 Update Released to Fix Critical USB Security Vulnerability Under Active Exploitation.

iOS 18.3.1 Update Addresses Critical USB Vulnerability Exploited in Sophisticated Attacks

Apple began rolling out iOS 18.3.1 on Monday, providing an essential security patch for supported iPhone models. The update fixes a critical vulnerability that could allow attackers to gain access to an iPhone even when it’s locked. According to Apple, this security flaw may have been exploited in an "extremely sophisticated attack against targeted individuals." Importantly, an attacker would need physical access to the device to carry out such an attack.

Apple Patches Accessibility Service Flaw Identified by Security Researcher

The vulnerability, found within the Accessibility service on iOS and iPadOS, could be used to disable USB Restricted Mode—a feature introduced in iOS 11.4.1 to block data communication with USB accessories unless the device has been unlocked within the past hour. Apple credits Bill Marczak, a researcher at The Citizen Lab at the University of Toronto's Munk School, for identifying the flaw. Marczak has urged users with eligible iPhone and iPad models to install the iOS 18.3.1 update promptly to secure their devices against potential threats.

What Is the iOS 18.3.1 Update?

Apple has officially rolled out iOS 18.3.1, a critical update for supported iPhone models. Unlike routine updates that focus on performance improvements or minor bug fixes, this release addresses a significant security vulnerability that has been actively exploited. The update aims to enhance device security and protect user data from sophisticated threats.

Understanding the USB Security Vulnerability

The core issue fixed in iOS 18.3.1 involves a flaw in the Accessibility service, which allowed attackers to bypass USB Restricted Mode. This feature, introduced in iOS 11.4.1, is designed to block unauthorized USB connections to locked devices. The vulnerability enabled attackers with physical access to an iPhone to potentially disable this security feature, making it easier to access sensitive data.

How Serious Is the Threat?

Apple confirmed that the vulnerability was exploited in "extremely sophisticated attacks" targeting specific individuals. While this means everyday users aren’t the primary targets, the fact that the flaw was actively used highlights its severity. To exploit the flaw, attackers needed physical access to the device—limiting widespread attacks but raising concerns about targeted surveillance activities.

Who Discovered the Security Flaw?

The vulnerability was discovered by Bill Marczak, a security researcher at The Citizen Lab, part of the University of Toronto's Munk School. Known for investigating digital threats against human rights activists and journalists, Marczak played a pivotal role in identifying this flaw. His findings prompted Apple to release the urgent update, and he has since urged all users to install iOS 18.3.1 immediately.

What Should You Do Now?

If you own an eligible iPhone or iPad, update to iOS 18.3.1 as soon as possible. Here’s how:

1. Go to Settings → General → Software Update.
2. Tap Download and Install.
3. Follow the prompts to complete the update.

Source:Gadgets 360

Cite this article:

Priyadharshini S (2025),”IOS 18.3.1 Update Released to Address Critical, Actively Exploited USB Security Vulnerability", AnaTechMaz, pp. 219