"The tech giant said the threat stems from the vast majority of users not updating to the latest version of their phone software, known as iOS 26. The patch includes advanced security upgrades for the latest vulnerabilities that hackers have allegedly been using in real-world attacks. Specifically, they've exploited sneaky flaws in the part of the iPhone that handles web browsing, called WebKit."
"WebKit is the engine that powers Safari and other apps on the iPhone. However, the weak points in older iPhone operating systems let hackers run harmful code on a target's phone just by tricking it into loading corrupted web content. These are often called 'zero-click' attacks because they don't rely on the victims opening a suspicious email or clicking on malicious links once they're in the system."
"However, the company warned that these mercenary attacks were 'global and ongoing,' meaning the roughly one billion iPhone users not using a version of iOS 26 are at risk of cyberattack, including ones that users can't see coming. Apple said that the remedy is to download either the iOS 26 or iOS 26.2 operating system updates and then restart the iPhone immediately to potentially clear out any hidden malware."
Apple warned that iPhone users face mercenary spyware capable of stealing data without user interaction by exploiting WebKit vulnerabilities. The exploits allow harmful code to run when a device loads corrupted web content, enabling zero-click attacks. The campaigns targeted journalists, activists, and politicians but are described as global and ongoing, putting roughly one billion iPhone users not running iOS 26 at risk. Apple released iOS 26 and iOS 26.2 with advanced security patches and instructs users to download the updates and restart immediately to potentially clear hidden malware. Older iPhone software, including iOS 18, no longer receives security fixes on newer phones.
Read at Mail Online
Unable to calculate read time
Collection
[
|
...
]