Attackers target vulnerabilities in iOS, Mitel SIP phones and PAN-OS

Attacks on security vulnerabilities have been observed in several products. Apple's iOS, iPadOS, Mitel's SIP phones and Palo Alto's PAN-OS are affected. Updates are available to close the gaps, which IT managers should install quickly.

The US IT security authority CISA warns of cyber attacks on vulnerabilities in iOS and iPadOS (CVE-2025-24200). Attackers with physical access can gain access by abusing the gap in the accessibility module for accessibility to remove restricted USB access – The gap was patched by Apple last week with iOS and iPadOS 18.3.1 and 17.7.5.

Security vulnerability attacked by the Mirai botnet

At the end of January, attacks on a vulnerability in Mitel's SIP phones also came to light. The Mirai botnet nests itself in vulnerable devices. The CVE-2024-41710 vulnerability became known back in August 2024 and CISA is now also warning that admins should update their devices quickly. As usual, CISA is not providing any details for either of the two vulnerabilities attacked, but this time they were disclosed through other channels.

Vulnerabilities in Palo Alto's firewall operating system PAN-OS also became known towards the end of last week. Exploit code was already available for the most serious vulnerability CVE-2025-0108.

The Shadowserver Foundation has observed attacks on the PAN-OS vulnerability using this exploit code since Thursday, as reported on X. On Friday, 19 source IP addresses that have attacked the vulnerability had already been collected. The IT researchers at Greynose also confirm that they have observed the first cyberattacks on the PAN-OS vulnerability.

IT managers should quickly install the available security updates for the vulnerabilities that have already been attacked in order to secure their own networks.

(dmk)