A new SecureROM exploit called USBliter8 has appeared on GitHub, targeting Apple’s A12 and A13 chips. If it holds up, it’s the most significant jailbreak-adjacent development for iPhone XS through iPhone 11 owners since checkm8 , and for the same reason: a SecureROM exploit can’t be patched by Apple.
Why SecureROM Matters
Every Apple device boots from a small piece of read-only code called SecureROM. It’s the first thing that runs when you power on an iPhone, and because it’s burned into the chip itself, Apple can’t update it after the device ships. A vulnerability in SecureROM is permanent. Once a device is affected, it stays affected no matter how many iOS updates Apple releases. That’s what made checkm8 such a landmark discovery in 2019 , it exploited a SecureROM flaw on A5 through A11 chips, and those devices remain exploitable today.
USBliter8 claims to do the same thing for A12 and A13, which covers iPhone XS, XS Max, XR, 11, 11 Pro, and 11 Pro Max. These are devices that checkm8 left behind, and they’ve been without a hardware-level exploit ever since.
What It Means in Practice
A SecureROM exploit on its own isn’t a jailbreak. It’s a foundation that jailbreak developers can build on. checkm8 took months to turn into checkra1n, a usable jailbreak, and even then it required a Mac to run and a USB connection every reboot. USBliter8 would likely follow a similar pattern: developers in the jailbreak community would need to build tooling on top of it before everyday users could take advantage.
The other thing to watch is independent verification. A new SecureROM exploit is a significant claim, and the security research community will need to confirm it before anyone puts too much stock in it. The repository is public and researchers are already looking at it.
The Bigger Picture
The timing is interesting. The jailbreak scene has been active lately, with Dopamine 2.5 pushing into iOS 17 and 18 on arm64 devices and palera1n keeping pace with each new OS release. A SecureROM exploit for A12/A13 would extend hardware-level jailbreak access to a much wider pool of devices and users, and it would do so permanently.
USBliter8 is available on GitHub. Verification and any tooling built on top of it will take time, but it’s worth watching closely.