Apple devices utilize a security technique called sandboxing, which isolates apps’ processes into their own protected environments so they can’t access certain parts of the file system that the manufacturer deems sensitive. But it’s possible for apps to circumvent this security mechanism via what’s known as a sandbox escape.
Apple has patched a WebKit vulnerability with the iOS 18.3.2, iPadOS 18.3.2, macOS Sequoia 15.3.2, tvOS 18.3.1 and visionOS 2.3.2 updates.
Another week, another intriguing write-up by the young and talented hobbyist security researcher @alfiecg_dev, who just this weekend published a blog post about a new deterministic kernel exploit called Trigon that is based on CVE-2023-32434, the same bug that the Kernel File Descriptor (KFD) exploit utilized with puaf_smith and was patched in iOS & iPadOS 16.5.1.
Speaking at a cybersecurity conference called Nullcon Goa 2025, Dopamine jailbreak and TrollStore perma-signing utility lead developer Lars Fröder, also more colloquially known around these parts as @opa334dev, took the stage to discuss the state of jailbreaking iPhones and iPads at present time.
In case you weren’t already aware, there was a Safari-based remote code execution (RCE) bug in the wild that Apple patched in a rapid security update for iOS & iPadOS 16.5.1 dubbed CVE-2023-37450, and ENKI WhiteHat is credited with the original proof of concept (PoC) showcasing the bug. But what if we told you someone made an exploit out of it? Interestingly enough, that seems to be exactly what has happened.
Download Apple's iOS and iPadOS 18.3.1, watchOS 11.3.1, macOS Sequoia 15.3.1 and visionOS 2.3.1 updates to fix an actively exploited vulnerability.
Interested in a new and nonchalant way to lock your iPhone when you’re finished using it? If so, then make sure you take some time to check out a free jailbreak tweak called GetDown by iOS developer uz.ra.
Learn what Apple's Rapid Security Response feature is, how it keeps your iPhone, iPad, and Mac protected by delivering critical patches, and how to turn it off.
Be sure to install the iOS 18.2.1 and iPadOS 18.2.1 software updates on your iPhone and iPad to get what Apple says are “important” bug fixes and security patches.
One of my biggest qualms with the Lock Screen on any iPhone or iPad is the fact that the number pad for passcode entry always has the same layout. This means that even if someone who’s glancing over your shoulder doesn’t know exactly what numbers you’re tapping on, they can instead easily memorize the positions of the number buttons you tap on to gain access to your device.
We previously showed you how you can change the root user password on your jailbroken handset with an on-device terminal app like NewTerm. But since then, the process has changed slightly, especially if using modern rootless jailbreaks on iOS or iPadOS 15 and later, such as Dopamine or palera1n. Fortunately, we will share the updated process with you in today’s tutorial.
A small but much appreciated change in Apple’s iOS 18.2 and iPadOS 18.2 operating systems finally lets you confirm the “Trust This Computer” prompt with Face ID!