Apple iOS outdated-device exploit-kit mitigation advisory
Advisory/Mitigation
Summary
Hide ▲
Show ▼
Apple is sending Lock Screen notifications to outdated iPhones and iPads after detecting active web-based attacks, urging users to install updates. The latest notice says Apple is aware of attacks targeting out-of-date iOS software on affected devices, and it follows the company’s earlier guidance about the Coruna and DarkSword exploit kits. Users who cannot update to a supported version are advised to enable Lockdown Mode on iOS 16 and later to reduce exposure to malicious web content.
Related Happenings
IPhone AI chatbot traffic leak of API keys, replayable tokens, and open relays
Technical Analysis
H score27
First: 30.06.2026 16:49
Last: 30.06.2026 16:49
Sources 1
About this happening:
**LLMKeyLens** testing found **444 iPhone AI chatbot apps** leaking **paid AI access**, exposing **API keys**, **replayable tokens**, and **open relays** that let others bill mode...
IPhone AI chatbot traffic leak of API keys, replayable tokens, and open relays
Technical AnalysisAbout this happening: **LLMKeyLens** testing found **444 iPhone AI chatbot apps** leaking **paid AI access**, exposing **API keys**, **replayable tokens**, and **open relays** that let others bill mode...
Apple iOS, macOS, and Safari security updates (multiple vulnerabilities)
Security Patch Release
H score33
First: 30.06.2026 10:15
Last: 30.06.2026 10:15
Sources 1
About this happening:
**Apple** released security updates for **iOS**, **macOS**, and **Safari** that fix **over three dozen flaws**, including **four WebKit vulnerabilities**. The update bundle covers...
Apple iOS, macOS, and Safari security updates (multiple vulnerabilities)
Security Patch ReleaseAbout this happening: **Apple** released security updates for **iOS**, **macOS**, and **Safari** that fix **over three dozen flaws**, including **four WebKit vulnerabilities**. The update bundle covers...
Apple A12/A13 SecureROM USB DMA underflow with public usbliter8 exploit security flaw
Vulnerability
H score0
First: 19.06.2026 21:37
Last: 19.06.2026 21:37
Sources 1
About this happening:
A public **usbliter8** exploit now reaches **arbitrary code execution** in Apple's **SecureROM**, exposing an **unpatchable USB DMA underflow flaw** across **A12, A13, S4, and S5*...
Apple A12/A13 SecureROM USB DMA underflow with public usbliter8 exploit security flaw
VulnerabilityAbout this happening: A public **usbliter8** exploit now reaches **arbitrary code execution** in Apple's **SecureROM**, exposing an **unpatchable USB DMA underflow flaw** across **A12, A13, S4, and S5*...
Apple security patch release for CVE-2025-20701
Security Patch Release
H score29
First: 18.06.2026 15:23
Last: 18.06.2026 15:23
Sources 1
About this happening:
Apple released **Beats Firmware Update 1B211** for **Beats Studio Buds** to fix **CVE-2025-20701**, closing a Bluetooth flaw that could let nearby attackers spy on conversations....
Apple security patch release for CVE-2025-20701
Security Patch ReleaseAbout this happening: Apple released **Beats Firmware Update 1B211** for **Beats Studio Buds** to fix **CVE-2025-20701**, closing a Bluetooth flaw that could let nearby attackers spy on conversations....
Apple Passwords app and Safari add Apple Intelligence-powered automatic password repair
Security Tool/Service
H score10
First: 09.06.2026 00:03
Last: 09.06.2026 00:03
Sources 1
About this happening:
**Apple Passwords app** and **Safari** are adding an **Apple Intelligence** feature that can automatically repair weak or compromised passwords, reducing password-hygiene risk for...
Apple Passwords app and Safari add Apple Intelligence-powered automatic password repair
Security Tool/ServiceAbout this happening: **Apple Passwords app** and **Safari** are adding an **Apple Intelligence** feature that can automatically repair weak or compromised passwords, reducing password-hygiene risk for...
Timeline
-
20.03.2026 07:16 3 articles · 3mo ago
Apple warns older iPhone and iPad users about Coruna and DarkSword
Initial DisclosureApple warned that older iPhones and iPads running outdated iOS can be exposed to web-based attacks using the Coruna and DarkSword exploit kits, where malicious web content on compromised websites can trigger an infection chain and steal sensitive data. Apple recommended updating to iOS 15.8.7, iPadOS 15.8.7, iOS 16.7.15, or iPadOS 16.7.15 for older devices, moving devices on iOS 13 or iOS 14 to iOS 15, and enabling Lockdown Mode when updating is not possible.
Show sources
- Apple Warns Older iPhones Vulnerable to Coruna, DarkSword Exploit Kit Attacks — thehackernews.com — 20.03.2026 07:16
- Apple Warns Older iPhones Vulnerable to Coruna, DarkSword Exploit Kit Attacks — thehackernews.com — 20.03.2026 07:16
- Apple Sends Lock Screen Alerts to Outdated iPhones Over Active Web-Based Exploits — thehackernews.com — 27.03.2026 19:22