Security firm Paradigm Shift exposed a new SecureROM flaw, dubbed usbliter8, that bypasses the boot process on Apple’s A12 and A13 chips. The exploit forces devices into DFU mode via USB, granting code execution before iOS loads. Affected models include iPhone XS, XR, and the iPhone 11 series in 2023 launch.

SecureROM sits at the start of the boot chain, verifying firmware before the rest of the OS runs. Because it lives in immutable hardware, Apple cannot patch it through software updates. The attack also enables boot‑chain compromise, allowing custom iOS binaries that would normally be blocked for device owners today.

Physical access is required; the attacker must connect via USB and trigger DFU mode. While most consumers will not face this scenario in everyday use, the flaw raises concerns for high‑risk users such as law enforcement or corporate fleets that may expose devices to tampering in modern operations today again.

Apple has not yet issued a public statement, but security teams have been notified. Users without newer hardware—like those on A14 or later—cannot rely on software fixes; upgrading remains the only way to eliminate the vulnerability. Until then, the risk stays confined to devices that can be physically accessed by.