Apple has released the iOS 26.2 update, addressing critical vulnerabilities that have exposed iPhone users to spyware attacks. This urgent update is designed to enhance privacy and security by blocking known exploitation paths. The company has emphasized the importance of immediate updates, as the vulnerabilities were actively being exploited by malicious applications.
The update primarily targets two significant vulnerabilities identified as CVE-2025-43529 and CVE-2025-14174. According to Apple, these flaws could allow attackers to execute malicious code if a user interacts with a specially crafted web page. Both vulnerabilities are linked to WebKit, the underlying browser engine for iOS and Safari, making the potential impact particularly concerning.
Details of the Vulnerabilities and Their Impact
The iOS 26.2 update includes critical patches for vulnerabilities in WebKit, which powers both the Safari browser and various iOS applications. “These flaws allowed malicious web content to execute arbitrary code on vulnerable devices,” stated Moshe Levi, Global Manager of the Checkpoint PT Team. He added, “Since WebKit powers Safari and many iOS applications, the potential impact is significant.”
Apple confirmed that the vulnerabilities had already been exploited in the wild, prompting the company to classify this update as a high-priority patch for all users. Levi urged users to “update all devices to iOS 26.2 immediately” and to remain vigilant for emerging threats. He advised against using links or pop-ups for updates, suggesting that users should complete the process through their device settings.
In addition to the WebKit vulnerabilities, iOS 26.2 addresses a kernel vulnerability identified as CVE-2025-46285, which allows malicious apps to gain root privileges. Other serious issues fixed in this update include vulnerabilities that permitted unauthorized access to sensitive payment tokens, which could lead to financial data exposure.
Staying Protected Against Malware
Apple has acknowledged that its devices are being targeted by stealthy malware, prompting the company to send out cyber threat notifications to users in 80 countries. These notifications are intended to inform users about potential threats without requesting any sensitive information, such as account passwords or verification codes.
The iOS 26.2 update is crucial for preventing highly targeted malware attacks, including those from notorious spyware such as Pegasus and Predator. To further bolster security, Apple recommends utilizing its Lockdown Mode, which enhances protection against sophisticated threats.
Signs of a compromised device can include device lags, overheating, and the presence of unfamiliar applications. The number of vulnerabilities addressed in the iOS 26.2 update underscores the importance of staying informed about the latest security releases.
“Users should update now from their phone’s settings and encourage their friends and family to do the same,” advised Javvad Malik, Lead CISO Advisor at KnowBe4. As cyber threats continue to evolve, ensuring that devices are up to date remains a critical line of defense for all users.
