Based on reporting by The Hacker News →
Introduction
A SecureROM exploit that lives in read-only memory—literally burned into the processor during chip fabrication—has been released to the public, and no software update will ever kill it. For the millions of users still carrying iPhone XS, XR, 11, or 12-series devices, this is not a theoretical risk; it is a permanent, physical vulnerability.
The problem
Security researchers at Paradigm Shift have published a working exploit, publicly dubbed *usbliter8*, that achieves arbitrary code execution inside the SecureROM of Apple’s A12 and A13 chips. As reported by The Hacker News, the exploit targets code that is physically fused into the silicon during manufacturing. That is the key detail: the SecureROM is read-only by design. It is the very first code that runs when an Apple device boots, and it cannot be patched or re-flashed by any signed update from Apple. The exploit requires physical USB access to the device—it is not a remote or over-the-air vector—but once that physical connection is obtained, the attacker gains persistent control of the SecureROM’s execution space.
Consequences
Because the SecureROM is the root of trust for the entire boot chain, a compromise at this level means an attacker can subvert every subsequent security check—including signature verification of the kernel, Secure Enclave, and all user-space integrity checks. Affected devices will carry this vulnerability for their entire operational lifespan. Apple cannot “patch” silicon. For users of these phones—business executives, journalists, activists, or anyone handling sensitive data—a lost or stolen device is no longer just a privacy embarrassment; it can become a forensic extraction point for persistent, undetectable compromise. The exploit does not self-replicate over a network, but any data on the device, including encrypted materials, can be read or manipulated once the attacker has physical USB access.