Particle.news
Download on the App Store
18 ARTICLES
·
21h ago

Apple Backports Coruna Exploit Fixes in Emergency iOS 16.7.15 and 15.8.7 Updates for Older Devices

The patches backport kernel‑WebKit fixes tied to the Coruna spyware toolkit onto vintage iPhones and iPads.

Image
Apple's iPhone 13 lineup shipped with iOS 15 out-of-the-box
Latest iOS 15 & iOS 16 updates target Coruna exploit
Apple releases new update to older devices (File Photo: Reuters)

Overview

  • Apple published security notes confirming these releases address Coruna-related flaws, including kernel CVE-2023-41974 and WebKit CVE-2024-23222, CVE-2023-43000 and CVE-2023-43010.
  • iOS/iPadOS 16.7.15 covers iPhone 8, iPhone 8 Plus, iPhone X, iPad 5th gen and first‑gen iPad Pro models, while iOS/iPadOS 15.8.7 targets iPhone 6s, iPhone 7, first‑gen iPhone SE, iPad Air 2, iPad mini 4 and iPod touch 7th gen.
  • Researchers at Google Threat Intelligence Group and iVerify describe Coruna as five full exploit chains leveraging 23 vulnerabilities across devices running iOS 13 through iOS 17.2.1.
  • The vulnerabilities enable compromise via malicious web content or escalation to kernel privileges, with Apple noting the original fixes shipped in newer iOS versions during 2023–2024 and are now backported.
  • Users should update via Settings > General > Software Update or await automatic installation, with experts stressing that exploitation appears targeted yet warrants prompt patching on legacy hardware.