Apple Releases Emergency Patches for Legacy Devices
Apple pushed security updates on March 12 for older iPhone and iPad models to address vulnerabilities actively exploited by the Coruna exploit kit. The patches target devices running iOS 15 and iPadOS 15, which no longer receive regular feature updates but remain vulnerable to active threats.
The Coruna exploit kit has been linked to cyberespionage campaigns and cryptocurrency theft operations targeting users of legacy Apple devices. Security researchers identified the exploit chain being used against devices that hadn't received patches for months.
iPhone 6s Through iPhone X Users Must Update
The security updates affect iPhone 6s, iPhone 6s Plus, iPhone SE (1st generation), iPhone 7, iPhone 7 Plus, iPhone 8, iPhone 8 Plus, and iPhone X. iPad Air 2, iPad mini 4, and 6th generation iPad models also received patches.
These devices represent millions of users worldwide who continue using older hardware. Apple estimates roughly 15% of active iPhones run iOS 15 or earlier versions that were vulnerable to the Coruna exploits.
Coruna Kit Exploits WebKit and Kernel Flaws
The Coruna exploit kit chains together WebKit browser vulnerabilities with kernel-level flaws to gain full device access. Attackers used malicious websites to trigger the exploit chain, then installed persistent backdoors for data theft.
Security Week reports that crypto wallet apps were primary targets, with attackers stealing private keys and seed phrases. Users should update immediately through Settings > General > Software Update on affected devices.
