Today's cybersecurity headlines are brought to you by ThreatPerspective
Ethical Hacking News

Apple Warns Users of Exploit Kits Targeting Outdated iOS Devices


Apple has issued a warning to its users, urging them to update their older iPhone devices to secure against powerful exploit kits that are being used to carry out web-based attacks. The latest version of iOS provides fixes for the various security flaws weaponized by these kits.

  • Apple has warned users of older iPhone devices about powerful exploit kits being used in web-based attacks.
  • Users who click on malicious links or visit compromised websites with outdated iOS versions are at risk of data theft.
  • Update to the latest version of iOS (15-16) is recommended for affected users.
  • Older devices cannot update to the latest version, so use iOS 15.8.7 and iPadOS 15.8.7 instead.
  • Enabling Lockdown Mode can help reduce attack surface and protect against malicious content.
  • The exploit kits are delivered through watering hole attacks via compromised websites and are widely available on the secondary market.
  • Nation-state-grade mobile exploitation is now available, making widespread mobile attacks a critical concern for all enterprises.



    • Apple has issued a warning to its users, urging them to update their older iPhone devices to secure against powerful exploit kits that are being used to carry out web-based attacks. The attack vectors in question involve malicious web content that targets out-of-date versions of iOS, triggering an infection chain that leads to the theft of sensitive data.

    According to Apple's support document, users who click on a malicious link or visit a compromised website and use an older version of iOS are at risk of having their data stolen. The company has thoroughly investigated these issues and released software updates as quickly as possible for the most recent operating system versions to address vulnerabilities and disrupt such attacks.

    However, not all users are affected by this issue. Those who are already on the latest version of the iPhone software do not need to take any action, as iOS versions 15 through 26 come with fixes for the various security flaws weaponized by the exploit kits. For those using older devices that cannot update to the latest version of iOS, Apple is recommending the following course of action: Update to iOS 15.8.7, iPadOS 15.8.7, iOS 16.7.15, and iPadOS 16.7.15 for devices that are not compatible with the latest operating system.

    In addition to updating their software, Apple is also recommending that users consider enabling Lockdown Mode, if available, in scenarios where updating the device is not an option. This will help reduce the attack surface and protect against malicious web content and other threats.

    The issue at hand is a result of recent reports about two iOS exploits that have been put to use by multiple threat actors with varied motivations to steal sensitive data from compromised devices. These exploit kits are delivered through a watering hole attack via compromised websites, making it easy for threat actors to target a large number of users.

    According to Spencer Parker, chief product officer at iVerify, the relative simplicity of deploying these exploits and their quick adoption by multiple threat actors in multiple countries signals that these powerful tools are now readily available on the secondary market for less-sophisticated actors. This represents a new level of scale, making widespread mobile attacks a critical concern for all enterprises.

    The evidence confirms that these exploits are easy to repurpose and redeploy, making it highly likely that modified deployments are actively infecting unpatched users. The fact that nation-state-grade mobile exploitation is now available on the secondary market makes it clear that the threat landscape is evolving at an unprecedented pace.

    In light of this developing situation, Apple's advisory serves as a timely reminder to all iOS users, regardless of their device's operating system version, to prioritize software updates and take proactive steps to protect themselves against these exploit kits. By doing so, they can significantly reduce the risk of falling victim to these attacks and ensure the security of their sensitive data.



    Related Information:
  • https://www.ethicalhackingnews.com/articles/Apple-Warns-Users-of-Exploit-Kits-Targeting-Outdated-iOS-Devices-ehn.shtml

  • https://thehackernews.com/2026/03/apple-warns-older-iphones-vulnerable-to.html

  • https://www.malwarebytes.com/blog/news/2026/03/apple-patches-coruna-exploit-kit-flaws-for-older-ios-versions

  • https://securityaffairs.com/189362/security/apple-issues-emergency-fixes-for-coruna-flaws-in-older-ios-versions.html


    • Published: Fri Mar 20 01:12:59 2026 by llama3.2 3B Q4_K_M


    © Ethical Hacking News . All rights reserved.

    Privacy | Terms of Use | Contact Us