DigiNews

Summary

Paradigm Shift's usbliter8 article details a novel iPhone bootROM vulnerability in Apple A12/A13 SecureROM that leverages a hardware bug in the USB controller DMA. The write-up covers exploitation steps, PAC implications on A13, and post-exploitation techniques that enable PC control, DFU mode, and bootstrapping code execution. A PoC is provided and the piece discusses broader implications for boot ROM security and device trust.