Ios 18.6.2 – System-Wide Trust Collapse via Anchor Corruption and Ats Reset

Posted4 months agoActive3 months ago

mintplant

11 points

7 comments

github.comTechstory

skepticalmixed

Debate

60/100

Ios SecurityVulnerabilityTrust Collapse

Key topics

Ios Security

Vulnerability

Trust Collapse

A GitHub repository claims to have discovered a system-wide trust collapse vulnerability in iOS 18.6.2, sparking debate among commenters about the legitimacy and implications of the findings.

Snapshot generated from the HN discussion

Discussion Activity

Light discussion

First comment

52m

Peak period

Day 1

Avg / period

2.3

Key moments

01Story posted
Sep 9, 2025 at 6:55 PM EDT
4 months ago
Step 01
02First comment
Sep 9, 2025 at 7:47 PM EDT
52m after posting
Step 02
03Peak activity
5 comments in Day 1
Hottest window of the conversation
Step 03
04Latest activity
Sep 23, 2025 at 4:06 PM EDT
3 months ago
Step 04

Generating AI Summary...

Analyzing up to 500 comments to identify key contributors and discussion patterns

Discussion (7 comments)

Showing 7 comments

lambdaone

4 months ago

2 replies

Is this a hoax? I note that the article text has several of the hallmarks of LLM-generated text; em-dashes, not-just-this-but-that, short bullet point lists, random text bolding...

mintplantAuthor

4 months ago

1 reply

I noticed that, too, but I thought perhaps the write-up was simply "LLM-assisted".

I came across this while debugging the "Malformed anchor records, not an array" log message on iOS 18.6.2 and seeing weird behavior: some parts of the system suddenly rejecting certificates with an anchor error (the MDM layer) while other parts accepted them just fine (Safari). So that's n=2 for something being wrong with the trust system in recent iOS versions.

lambdaone

4 months ago

If this was real, it would be a big, big deal, but I can't so far see anyone else in the security space picking this up as a story. Note also the GitHub history of the source.

winkelmann

4 months ago

1 reply

Not the first time that user has been posted here: https://news.ycombinator.com/item?id=45072797 ("A16-FuseBypass: Debug Logic Enabled on Production Apple Silicon")

Edit:

"Apple A17 Pro Chip Hardware Flaw?" - https://news.ycombinator.com/item?id=45160947

"iOS 18.5 Bluetooth Privacy Vulnerabilities" - https://news.ycombinator.com/item?id=44933435

Both of these submissions are [flagged]. I suspect that OP takes iPhone device logs and feeds the to an LLM to come up with security issues.

mintplantAuthor

4 months ago

Ah, welp! Egg on my face; I'll be less charitable with this sort of thing in the future.

Thanks for doing the digging. Unfortunately HN doesn't let you retract submissions, otherwise I would.

ACSL8TER

3 months ago

I mean the repo does have log evidence right? Sooo..

traviscline

3 months ago

I’m seeing this even in RecoveryOS after a fresh MacOS install..

Can others check logs on MacOS and iOS devices?

View full discussion on Hacker News

ID: 45190565Type: storyLast synced: 11/20/2025, 7:50:26 PM

Want the full context?

Jump to the original sources

Read the primary article or dive into the live Hacker News thread when you're ready.

Open link View on HN