A new BootROM exploit, named Usbliter8, has been disclosed by the European cybersecurity firm Paradigm Shift, affecting millions of iPhones and Apple Watches. This exploit targets Apple’s SecureROM, which is critical for the secure boot process. Usbliter8 exploits a USB controller bug and a firmware configuration weakness, allowing attackers with physical USB access to gain control over affected devices, specifically those with A12 and A13 chips.
Although it allows for control of the processor and execution of arbitrary code, it does not directly compromise user data safeguarded by Apple's Secure Enclave Processor (SEP). The research team published proof of concept code to highlight the vulnerabilities in modern BootROM security, mirroring the impact of the earlier Checkm8 exploit.