Around 1.6 billion people around the world have iPhones, and while Apple is usually diligent regarding security, there are two major problems that have surfaced. These problems leave iPhone users completely vulnerable to cyber criminal attacks and if users don’t address, they can steal all of your personal data and even your financial information.
The flaws exist in the WebKit, the area that powers Safari browser that iPhones use as well as all browsers that run on IOS. These flaws were identified by threat actors where they created an attack that was sophisticated and targeted individuals on a specific list. While the “list” is unknown, it’s been assumed that they are political and public figures. The flaws created a scenario that gave malicious websites permission to “trick” iPads and iPhones so that they ran code that was harmful. Once the code was successful, the cyber criminals gained control of the devices so that they could access financial information and steal passwords It only required visiting the website that contained the bad software.
Once the flaws were found out, Apple moved swiftly to create a software “patch” to address and correct the problems. However, here’s the catch: many people don’t take advantage of the opt in update portion and that leaves around 800 million users around the world in a vulnerable state. The patch requires that the devices be upgraded from IOS 18 to IOS 26.2 and threat actors are eagerly advancing their actions, knowing that there are so many that they can take advantage of. There isn’t anything the average user can do except upgrade as these flaws are set deep inside the engine of the browser.
Older iPhones and iPads are not eligible for this update.
Users with the following devices are being informed to accomplish the software update as these are the most vulnerable to attacks:
- iPhone 11 or later
- iPad Pro 12.9 inch, third generation and later models
- iPad Pro 11 inch, first generation and later models.
- iPad Air, third generation and later models.
- iPad, eighth generaatio and later models.
- iPad mini, fifth generation and later models.
In addition, Apple has launched IOS 18.7.3 to focus on vulnerabilities in two WebKit areas on iPhone XS, XS Max, XR and IPad OS 18.7.3 for iPad – seventh generation.
It should be noted that for any user refusing to update to address these flaws, Apple will be refusing security support to anyone who chooses to stay on IOS 18. Older devices cannot run IOS 26, however, the software fix is only available on iOS 26.2 and iPadOS 26.2.
Security professionals recommend that you set your Apple devices so that they automatically update with any new software. This removes the “human error factor” from the equation. Many times these updates can occur during the night so that it doesn’t interrupt daily activities.
If you choose to manually update you will need to make sure that you are Wi-Fi connected and your device is plugged in or has enough battery life:
- Open the Settings app on iPhone
- Tap General
- Select Software Update
- Download and install iOS 26.2 or iPadOS 26.2 or later
“DaVinci Cybersecurity recognises that in our digital world, threat actors will always be developing the next level of attacks. We inform and educate the general public and our clients so that they can protect themselves from cyber criminals.”
– Sharon Knowles, CEO DaVinci Cybersecurity
Source:
https://www.foxnews.com/tech/apple-warns-millions-iphones-exposed-attack.amp
https://www.newsbreak.com/share/4451589156539-new-ios-and-ipados-flaws-leave-millions-of-iphones-at-risk?_f=app_share&pd=0ImmoeNf&lang=en_US&send_time=1768951181&trans_data=%7B%22platform%22%3A0%2C%22cv%22%3A%2226.2.0.49%22%2C%22languages%22%3A%22en%22%7D&s=i16
