If you have an older Apple device that doesn’t support the most current operating system, you may not get every security update that targets the latest iOS — or at least not at the same time. An apple just released a patch for older devices, which addresses a handful of bugs already addressed in updates to newer models. Many of these have been used in zero-day attacks, so if you have one of the affected devices, you should make sure you have these updates installed as soon as possible.
Zero-day exploits are fixed with the update on older iPhones and iPads
As reported by BleepingComputer, March 11 security update addresses vulnerabilities used in cyber espionage and crypto theft attacks. Bugs are part of Coruna Exploit Kitspyware and surveillance suite with a total of 23 exploits which target iOS versions 13.0 to 17.2.1. Google Threat Intelligence Group researchers have observed its deployment by state-backed Russian hackers, surveillance system vendors and Chinese threats.
The vulnerabilities Apple patched would allow attackers to escalate permissions to kernel privileges or gain remote code execution capabilities on affected devices. The bugs include CVE-2023-43010, CVE-2024-23222, CVE-2023-43000, and CVE-2023-43010, all of which affect WebKit, and CVE-2023-41974, a kernel vulnerability.
The update applies to older models running iOS 15.8.7/16.7.15 and iPadOS 15.8.7/16.7.15:
What do you think so far?
-
iPhone 6s
-
iPhone 7
-
iPhone SE (first generation)
-
iPhone 8
-
iPhone 8 Plus
-
iPhone X
-
iPad Air 2
-
iPad Mini (4th generation)
-
iPod Touch (7th generation)
-
iPad (5th generation)
-
iPad Pro 9.7 inches
-
iPad Pro 12.9 inch (1st generation)
An apple patch another zero day in February this year for iOS 26, iPadOS 26 and macOS Tahoe, which it said may have been used in a “highly sophisticated attack against specific targeted individuals.”
