APPLE PATCHES CORUNA KIT AS MILLIONS OF OLDER IPHONES LEFT EXPOSED IN GLOBAL CYBER ESPIONAGE STORM
A critical cybersecurity gap has just been partially sealed, exposing a terrifying global malware campaign that evolved from state-sponsored espionage to rampant criminal data breach operations. Apple has rushed out patches for older, unsupported iPhones after the Coruna exploit kit was found weaponizing multiple zero-day vulnerabilities, putting millions of users at immediate risk of complete device takeover.
The kit, first documented by Google in early 2026, targeted a staggering range of iOS versions, from 13.0 to 17.2.1. Its core method was a devastating one-two punch: it used WebKit flaws to execute initial code, then exploited a separate kernel vulnerability to gain total control. For newer devices, patches shipped in 2023 and 2024. But owners of older phones were sitting ducks until now.
This isn't just another bug. The Coruna kit's journey is a masterclass in cyber-weapon proliferation. It began in highly targeted attacks, was later used by a suspected Russian group against Ukrainian targets, and then flooded onto fake Chinese financial websites for mass phishing campaigns. "We watched a state-grade exploit get commoditized in real time," a senior threat intelligence analyst told us. "It went from espionage to bank fraud, and the underlying vulnerabilities were a golden ticket."
You should care because this proves your outdated device is a liability. This exploit chain could silently install ransomware, steal crypto wallet keys, or bypass multi-factor authentication by intercepting codes—a flaw similarly seen recently in Microsoft Authenticator. True blockchain security and personal cybersecurity start with a patched device.
We predict this patch is too little, too late for countless devices already compromised, with stolen data likely already for sale on dark web forums.
The era of assuming 'old but functional' is secure is over. Update or be exploited.
