Security experts are warning iPhone users that waiting to update to iOS 18 could leave their devices vulnerable to a new attack.
The flaw, found by researchers at Jamf, affects both iPhones and Macs. Known as a “TCC bypass,” this issue allows malicious apps to access sensitive data like photos, contacts, and GPS location without notifying the user.
The vulnerability is in the TCC (Transparency, Consent, and Control) system, which normally alerts users when an app tries to access their personal data.
However, the flaw lets apps bypass this system, leading to potential privacy and data breaches. Attackers could even access data from iCloud without leaving any trace.
Apple has already fixed the problem in iOS 18. To stay safe, users should update to the latest version, iOS 18.1.1, or risk leaving their devices open to attack.
Researchers warn that the longer users wait to update, the more likely they are to become victims of cyberattacks targeting the vulnerability.