Apple Security Flaws Exposed in Sophisticated Spyware and Crypto Theft Attacks

Vaibhav March 6, 2026
Apple-Security-Flaws-Exposed-in-Sophisticated-Spyware-and-Crypto-Theft-Attacksdata
Post Views: 102

US Agencies Ordered to Patch iOS Vulnerabilities Exploited in Crypto-Theft Attacks

The US Cybersecurity and Infrastructure Security Agency (CISA) has directed federal agencies to address three iOS security vulnerabilities that have been targeted in cyberespionage and cryptocurrency theft attacks.

The Coruna Exploit Kit

Coruna is a sophisticated exploit kit that provides threat actors with multiple capabilities, including Pointer Authentication Code (PAC) bypass, sandbox escape, and PPL (Page Protection Layer) bypass.

These capabilities enable attackers to gain WebKit remote code execution and escalate permissions to Kernel privileges on vulnerable devices.

The exploit kit has been used by multiple threat actors, including a suspected Russian state-backed hacking group and a financially motivated Chinese threat actor.

Crypto-Theft Attacks

The Chinese threat actor, in particular, has used Coruna to deliver a malware payload designed to steal cryptocurrency wallets from infected victims.

The attacks involved the deployment of fake gambling and cryptocurrency websites that exploited the iOS vulnerabilities to gain access to victims’ devices.

CISA Response

CISA has added the three Coruna vulnerabilities to its catalog of Known Exploited Vulnerabilities and ordered Federal Civilian Executive Branch (FCEB) agencies to secure their devices by March 26.

The agency has also urged all organizations, including private sector companies, to prioritize patching these flaws to secure their devices against attacks.

“The Coruna exploit kit is an example of the increasing sophistication of spyware-grade capabilities that are being used by nation-state actors and mass-scale criminal operations.”

Recommendations

In response to the threat, CISA has advised organizations to apply mitigations per vendor instructions, follow applicable guidance for cloud services, or discontinue use of the product if mitigations are unavailable.

The agency has also emphasized the importance of prioritizing patching these flaws to secure devices against attacks.

Conclusion

The use of the Coruna exploit kit in crypto-theft attacks highlights the ongoing threat posed by nation-state actors and financially motivated threat actors to mobile device security.

Organizations must remain vigilant and take proactive steps to secure their devices against these types of attacks.



About Author

Vaibhav

See author's posts

More Stories

www.news4hackers.com-google-cloud-unveils-ai-powered-security-strategy-to-combat-evolving-cyber-threats-google-cloud-unveils-ai-powered-security-strategy-to-combat-evolving-cyber-threats

Google Cloud Unveils AI-Powered Security Strategy to Combat Evolving Cyber Threats

Vaibhav April 23, 2026
www.news4hackers.com-gdpr-enforcement-hinges-on-compliance-efforts-gdpr-enforcement-hinges-on-compliance-efforts

GDPR Enforcement Hinges on Compliance Efforts

Vaibhav April 23, 2026
www.news4hackers.com-latest-microsoft-defender-flaw-exploited-by-hackers-as-zero-day-vulnerability-latest-microsoft-defender-flaw-exploited-by-hackers-as-zero-day-vulnerability

Latest Microsoft Defender Flaw Exploited by Hackers as Zero-Day Vulnerability

Vaibhav April 23, 2026

Latest Cyber Security News

www.news4hackers.com-artificial-intelligence-malware-threats-emerge-as-cybersecurity-challenge-artificial-intelligence-malware-threats-emerge-as-cybersecurity-challenge

Artificial Intelligence Malware Threats Emerge as Cybersecurity Challenge

Vaibhav April 23, 2026
www.news4hackers.com-thane-nashik-job-scam-man-arrested-over-fake-government-job-offers-thane-nashik-job-scam-man-arrested-over-fake-government-job-offers

Thane-Nashik Job Scam: Man Arrested Over Fake Government Job Offers

Vaibhav April 23, 2026
www.news4hackers.com-delhi-cyber-fraud-case-court-rejects-bail-in-22-92-crore-scam-delhi-cyber-fraud-case-court-rejects-bail-in-22-92-crore-scam

Delhi Cyber Fraud Case: Court Rejects Bail in ₹22.92 Crore Scam

Vaibhav April 23, 2026
www.news4hackers.com-the-browser-as-the-control-layer-a-new-frontier-in-shadow-ai-the-browser-as-the-control-layer-a-new-frontier-in-shadow-ai

The Browser as the Control Layer: A New Frontier in Shadow AI

Vaibhav April 23, 2026
www.news4hackers.com-post-quantum-cryptography-solutions-a-new-era-for-secure-online-transactions-post-quantum-cryptography-solutions-a-new-era-for-secure-online-transactions

Post-Quantum Cryptography Solutions: A New Era for Secure Online Transactions

Vaibhav April 23, 2026
en_USEnglish
en_USEnglish