Thousands of iPhones were compromised using the Coruna exploit kit, which chained 23 iOS vulnerabilities into advanced attacks used for espionage and cybercrime.

Sysdig cited figures from the Zero Day Clock initiative which revealed that median time-to-exploit (TTE) collapsed from 771 days in 2018 to just hours in 2024. It said that, by 2023, 44% of exploited vulnerabilities were weaponized within 24 hours of disclosure, and 80% of public exploits appeared before the official advisory was published.

Qualcomm confirms fixes for the GBL exploit are now with Android brands, patching the latest Snapdragon 8 Elite Gen 5 bootloader unlock.

Apple confirms hidden iOS 26 security update, and Google confirms silent iOS 18 spyware compromise. What you need to know and do.

Google has detailed a similar attack to Coruba, called DarkSword, which is actively being used in several countries. Here are the details.

DarkSword exploit targets iOS 18.4–18.7 using 6 flaws and 3 zero-days, enabling rapid data theft from iPhones across multiple countries.

Google has confirmed an emergency Chrome security update amid reports that attackers are exploiting two zero-day vulnerabilities.

Apple has detailed the security content for iOS and iPadOS 16.7.15, 15.8.7, 16.7.15, and 15.8.7, confirming that they address the Coruna vulnerability.

Security researchers have uncovered a hacking toolkit designed to compromise Apple iPhones and steal cryptocurrency wallet data. Threat analysts at Google say the exploit kit specifically targets crypto users by searching infected devices for wallet seed phrases and other financial information.

A few days after the supply cap manipulation attack that saw an attacker borrow over $14.9 million from the DeFi platform Venus Protocol, the value of $THE, the native token of another DeFi platform,