Security researchers have published a checkm8-style unpatchable BootROM exploit targeting Apple iPhones running A12 and A13 chips, including the iPhone XS through iPhone 11 series. Because the vulnerability exists in read-only boot firmware, Apple cannot issue a software patch — the only fix is a hardware replacement. This gives attackers a persistent, low-level foothold on affected devices that survives factory resets and OS reinstalls.

Security Architect’s Take: Audit your mobile device fleet and MDM policies immediately: any corporate-issued or BYOD iPhone with an A12 or A13 chip should be considered untrustworthy for accessing sensitive cloud workloads or acting as an MFA device. Consider accelerating hardware refresh for those devices and enforce conditional access policies that block or flag authentication attempts from potentially compromised endpoints.

Original advisory: Researchers drop checkm8-style BootROM exploit for A12 and A13 iPhones