Apple fixes zero-click exploit underpinning Paragon spyware attacks

Apple has updated its iOS/iPadOS 18.3.1 documentation, confirming it introduced fixes for the zero-click vulnerability used to infect journalists with Paragon's Graphite spyware.

The infections were confirmed when two journalists approached spyware researchers at The Citizen Lab after receiving notifications from Apple in April that they were targeted by spyware.

The researchers looked under the hoods of the reporters' phones, confirming the same. Apple has since assigned the zero-day vulnerability CVE-2025-43200 (7.5), saying it was addressed with improved checks.

"A logic issue existed when processing a maliciously crafted photo or video shared via an iCloud Link," it said in the update. "Apple is aware of a report that this issue may have been exploited in an extremely sophisticated attack against specific targeted individuals."

The details of the patch were added this week for the first time, despite version 18.3.1 and its documentation being ...