A previously unknown hardware feature has been hijacked to hack iPhones across the world

As the name suggests, these attacks require no interaction from the victim’s side and can be used to steal sensitive data from the endpoint, run code remotely, or completely take over the device.

Zero click attacks

The four vulnerabilities being chained are tracked as CVE-2023-41990, CVE-2023-32434, CVE-2023-32435, and CVE-2023-38606. It’s the latter that’s particularly interesting because it targets MMIO (memory-mapped I/O) registers in Apple A12-A16 Bionic processors which are not listed in the DeviceTree.

"If we try to describe this feature and how the attackers took advantage of it, it all comes down to this: they are able to write data to a certain physical address while bypassing the hardware-based memory protection by writing the data, destination address, and data hash to unknown hardware registers of the chip unused by the firmware," Kaspersky said in its report.

Right now, no one knows how or why these features ended up in the commercial version of the device. BleepingComputer reports that Russia's intelligence service (FSB) accused Apple of building a backdoor for the NSA to use against the Russian government and embassy staff. It also speculated that the features were left out by mistake, and used in the development phase for debugging or hardware testing. 

In any case, Apple addressed the issue by updating the device tree to restrict physical address mapping.

TechRadar Pro has contacted Apple for comment.

More from TechRadar Pro

• Major data breach leaks highly sensitive donor records of multiple charities
• Here's a list of the best firewalls today
• These are the best endpoint protection services right now