Apple issues major security warning to all iPhone users after 'attacks'

Apple has given its iPhone users a stark warning after cyberattacks were launched against some customers.

The tech giant recently launched two iOS updates to fix vulnerabilities that were targeted in the attacks.

According to reports, the vulnerabilities impact WebKit, which is the browser engine behind Apple’s Safari on its iOS software.

The two vulnerabilities are CVE-2025-43529 and CVE-2025-14174, and were able to corrupt some devices on the iOS released prior to iOS 26.

CVE-2025-43529 is a 'use-after-free' vulnerability that lets malicious attackers trick the internet browser, while CVE-2025-14174 uses memory corruption to compromise the users' devices.

Google's Threat Analysis Group and Apple discovered the vulnerabilities on devices such as the iPhone 11 and up, iPad Pros, the iPad Air from the third generation and up, iPad (eighth generation and up) and the iPad Mini (fifth generation and up).

Apple said, per a release: “For our customers’ protection, Apple doesn’t disclose, discuss, or confirm security issues until an investigation has occurred and patches or releases are available.”

Apple revealed how you can be safe from attacks (Getty Stock Images)

And guidance from Apple states: "Keeping your software up to date is one of the most important things you can do to maintain your Apple product's security."

The phones were targeted by mercenary spyware, which means that updating to iOS 26 is essential for stopping your iPhone from being exposed to the vulnerabilities on previous iOS.

Apple called it an ‘extremely sophisticated attack’, and as at least 50 percent of users have not upgraded to iOS 26, even the US government has come out to warn them to update devices, per Forbes.

iOS 26 includes heightened security features such as Safari fingerprinting defence and anti-scam functions for calls and messages.

“Users should urgently update all impacted Apple devices,” James Maude, from BeyondTrust, told the outlet this month. “It will quickly become a must have exploit for a range of threat actors."

“There’s no workaround or user behavior that meaningfully mitigates this risk,” Keeper Security’s Darren Guccione also added, noting that installing the update ‘is the only effective defense’ against cyber-attacks on iPhones.

Apple says you need to update your iOS updated to prevent vulnerabilities (Getty Stock Images)

He said: “Once patches are public, the exposure window widens for anyone who delays updating.”

However, in the meantime, you can use your iPhone’s lockdown feature, which shuts down access to numerous functions and also secures them.

In a report by ZDNET, Ivan Krstić, Apple’s head of security engineering and architecture, said: “While the vast majority of users will never be the victims of highly targeted cyberattacks, we will work tirelessly to protect the small number of users who are.

“That includes continuing to design defences specifically for these users, as well as supporting researchers and organizations around the world doing critically important work in exposing mercenary companies that create these digital attacks.”