Apple has released emergency security updates to address a critical “Zero-Day” vulnerability known as CVE-2025-43300, affecting iPhones, iPads and Macs.

A zero-day attack exploits a software vulnerability for which there is no existing fix, giving the attackers a window of opportunity before a defence or patch is built.

In this case, the emergency patch is being released in a new operating system update, iOS 18.6.2., and Apple has warned all iPhone users that they are at risk until they update.

The operating system flaw, as noted on PCMag.com, resides in the Image I/O framework, which handles image processing across Apple devices.

“Apple is aware of a report that this issue may have been exploited in an extremely sophisticated attack against specific targeted individuals,” Apple stated, according to the report.

The report provides details for the threat that, writing that an “elite hacking group, possibly a spyware developer, has been delivering the attack through images secretly rigged to abuse the flaw.”

The images, according to the report, could be delivered in an email or text message.

The report states that along the lines of the same mishap, Apple patched a technology flaw in April that used maliciously crafted media files to trigger a memory corruption within the software for iOS and macOS. – Staten Island Advance, N.Y./Tribune News Service