Apple Rushes Zero-Day Fix With Direct Risk to Crypto Users
Apple has rolled out urgent security updates across iOS, iPadOS, and macOS, patching a zero-day vulnerability already being exploited in the wild.
The bug, tracked as CVE-2025-43300, affects the ImageIO framework, a system component that handles image processing across apps.
Zero-day in everyday images
According to Apple, a maliciously crafted image could trigger memory corruption and allow attackers to execute arbitrary code. Because ImageIO underpins standard tasks, such as viewing photos in messages, emails, or browsers, the attack vector is particularly accessible. Security analysts flagged the flaw as part of a highly targeted campaign against individuals. Apple addressed the issue by strengthening bounds checks in…
