Apple Silicon Security Flaw Discovered in iPhone 12 and M2 MacBook Air

by

A security vulnerability that could allow attackers to access sensitive data has been discovered in some Apple silicon GPUs.

a14 bionic chip video
A recent investigation by cybersecurity firm Trail of Bits discovered the security flaw, named "LeftoverLocals," which allows attackers with local access to a device to retrieve data processed in the GPU's local memory. The issue is particularly concerning because of the expanding use of GPUs in processing Large Language Models (LLMs) for AI applications.

According to the firm, the vulnerability enables an attacker to eavesdrop on another user's interactive LLM session, potentially accessing sensitive information. Apple told Wired that newer devices with the A17 Pro and M3 chips have received patches to address this flaw, and Trail of Bits found that the third-generation iPad Air had also received a fix.

Most older models with vulnerable GPUs, including the iPhone 12 and M2 MacBook Air, are still vulnerable. While Apple has taken steps to patch certain devices, it remains unclear if and when all impacted models will receive security updates to directly address the problem.

The nature of the LeftoverLocals vulnerability is such that it requires installation of a malicious app or physical access to the device. As always, Apple encourages users to install the latest available software update to ensure they receive security fixes.

Tags: Apple Security, Apple Silicon Guide

Popular Stories

Apple Glasses Purple Feature

Apple Smart Glasses Launching in 2026

Thursday May 22, 2025 12:22 pm PDT by
Apple is planning to launch a set of smart glasses by the end of 2026, reports Bloomberg. The glasses will be comparable to the Meta Ray-Bans and the Android XR glasses that Google showed off earlier this week. Apple's smart glasses are expected to include cameras, microphones, and AI capabilities, much like the Meta Ray-Bans. The glasses will be able to take photos, record video, provide...
Read Full Article145 comments
Apple Glass

Apple Smart Glasses: Everything We Know So Far

Wednesday May 21, 2025 8:21 am PDT by
Google recently made waves by showcasing a set of lightweight smart glasses featuring deep Gemini integration and an optional in-lens display. The demo has reignited interest in Apple's own smart glasses project, which has been the subject of rumors for nearly a decade. Here's a recap of where things stand. Current Development Status Apple is actively working on new chips specifically...
Read Full Article56 comments
Apple CarPlay Ultra instrument cluster themes 01

Apple's CarPlay Ultra Is Here – Does Your iPhone Support It?

Thursday May 15, 2025 5:17 am PDT by
Apple's recently announced CarPlay Ultra promises a deeply integrated in-car experience, but not all iPhone users will be able to take advantage of the new feature. According to Apple's press release, CarPlay Ultra requires an iPhone 12 or later running iOS 18.5 or later. This means if you're using an iPhone 11, iPhone XR, or any older model, you'll need to upgrade your device to access...
Read Full Article
2024 iPhone Boxes Feature

Apple Raises iPhone Trade-In Values For Limited Time — Here's the List

Friday May 23, 2025 6:48 am PDT by
Apple has temporarily increased its iPhone trade-in values in select countries, including the U.S., Canada, Australia, France, Germany, Italy, Spain, U.K., and China. Apple says the extra credit towards a new iPhone is available through June 18. In the U.S., the maximum estimated trade-in values increased by only $5 to $30, with the full changes in that country outlined below. ...
Read Full Article40 comments
iPod shuffle generations

Kuo: Jony Ive's Futuristic OpenAI Device Like a Neck-Worn iPod Shuffle

Thursday May 22, 2025 8:05 am PDT by
The big news in the technology world this week is that ChatGPT maker OpenAI is working more closely with Apple's former design chief Jony Ive on a futuristic AI device. The company is remaining tight lipped about the device, but Apple supply chain analyst Ming-Chi Kuo has shared some alleged details about its design. In a social media post today, Kuo said the device will be "slightly larger" ...
Read Full Article195 comments
CarPlay Ultra Aston Martin

CarPlay Ultra Solves One of Regular CarPlay's Biggest Limitations

Thursday May 22, 2025 9:16 am PDT by
The next generation of CarPlay is finally starting to roll out, and it includes a new feature that solves one of regular CarPlay's longstanding limitations. Apple last week announced the launch of CarPlay Ultra, and it offers a Radio app, allowing you to control AM and FM radio stations within CarPlay. With regular CarPlay, you must switch between CarPlay and your vehicle's built-in software ...
Read Full Article113 comments
AirPods Pro 3 Mock Feature

AirPods Pro 3 Just Months Away – Here's What We Know

Thursday May 22, 2025 4:06 am PDT by
Despite being more than two years old, Apple's AirPods Pro 2 still dominate the premium wireless‑earbud space, thanks to a potent mix of top‑tier audio, class‑leading noise cancellation, and Apple's habit of delivering major new features through software updates. With AirPods Pro 3 widely expected to arrive in 2025, prospective buyers now face a familiar dilemma: snap up the proven...
Read Full Article102 comments
General Calendar Feature

Apple Calendar App Revamp Confirmed by Job Posting

Friday May 23, 2025 3:12 am PDT by
A new Apple job listing has provided more evidence that the company is working on a major overhaul of its Calendar app. A senior software engineer position for "Calendar Experience," spotted by Macworld's Filipe Espósito, explicitly states that Apple seeks candidates to join a team that will "reimagine what a modern calendar can be across Apple's platforms." Listed on April 29, the posting ...
Read Full Article51 comments

Top Rated Comments

GMShadow Avatar
GMShadow
18 months ago

The nature of the LeftoverLocals vulnerability is such that it requires physical access to the device,
This makes it more of an academic vulnerability - the number of people at risk of having their device stolen so someone can run this hack on it is infinitesimal. Patch it if possible, but 99.999% of people shouldn't be worried about this.
Score: 29 Votes (Like | Disagree)
3530025 Avatar
3530025
18 months ago

If someone has your Mac there are 1000 easier ways to get data off it than this.
Score: 28 Votes (Like | Disagree)
GMShadow Avatar
GMShadow
18 months ago

Will be interesting to see if Apple will fix the M2 MacBook Air or use this as an opportunity to motivate people to upgrade their M2 MacBook Air to the M3 MacBook Air, by claiming it's not fixable.
If someone has your Mac there are 1000 easier ways to get data off it than this.
Score: 16 Votes (Like | Disagree)
bviktor Avatar
bviktor
18 months ago

One more reason to convince my friend to upgrade from her 12. But should've this happened in the first place,
All devices get new vulnerabilities all the time. That includes new devices. We need a patch, not a new device.
Score: 13 Votes (Like | Disagree)
chrono1081 Avatar
chrono1081
18 months ago

Measurements taken to force people to upgrade. Apple knows that the ship is gonna sink, hence everyone is leaving the company and WSB horses have been implemented into the company to take full control and drive it down the core leaving with all the money.
This isn't remotely true. If you truly think this way I legit feel bad for you. This is a weird security flaw (which happens all the time, security is a game of cat and mouse), nothing more.
Score: 9 Votes (Like | Disagree)
roar08 Avatar
roar08
18 months ago

I see AAPL having a time ticking bomb...
This has been said about AAPL for the past 30+ years. I guess that's one long fuse.
Score: 9 Votes (Like | Disagree)
Read All Comments