Join on WhatsApp
Join on Telegram
Rabat – Apple has rolled out a series of urgent security updates after confirming that multiple zero-day vulnerabilities were actively exploited in what the company described as “extremely sophisticated” attacks targeting specific individuals.
The flaws affect a wide range of Apple products, including iPhones, iPads, Macs, and the Safari browser, raising concerns about the exposure of users running older software versions.
According to Apple’s security advisories, the attacks targeted devices running versions of iOS prior to iOS 26, exploiting previously unknown weaknesses before fixes were made available.
While Apple has not disclosed who was targeted or how many users were affected, the language used in its bulletin suggests a highly targeted campaign rather than a broad, opportunistic hacking attempt.
A security alert issued by Morocco’s Directorate General for Information Systems Security (DGSSI), through its national cyber response center maCERT, confirms that several Apple zero-day vulnerabilities are being actively exploited and classifies the overall risk as “important” with a “critical” impact.
The bulletin warns that successful exploitation could allow attackers to remotely execute malicious code, bypass security protections, access sensitive information, or disrupt device operation.
At the center of the alert are two WebKit vulnerabilities, identified as CVE-2025-43529 and CVE-2025-14174, which are believed to have been used in real-world attacks.
WebKit is the engine behind Safari and is deeply embedded across Apple’s ecosystem, meaning a single flaw can have wide-reaching consequences.
A wide attack surface across Apple devices
The DGSSI bulletin lists a broad range of affected systems, including iOS and iPadOS versions prior to 26.2 and 18.7.3, macOS Sonoma, Sequoia, and Tahoe before their latest updates, as well as watchOS, tvOS, visionOS, and Safari.
Devices potentially at risk include iPhone 11 models and later, several generations of iPad Pro, iPad Air, iPad mini, and standard iPads.
Cybersecurity researchers say the WebKit flaw linked to CVE-2025-43529 could allow attackers to run arbitrary code simply by getting a target to load malicious web content.
The second flaw, CVE-2025-14174, could lead to memory corruption, opening the door to further exploitation.
Both vulnerabilities were identified with the involvement of Google’s Threat Analysis Group, which typically investigates advanced attacks linked to state-backed or highly organized actors.
Apple says it has addressed the issues in the latest software updates, including iOS and iPadOS 26.2 and 18.7.3, macOS Tahoe 26.2, and Safari 26.2. The company is urging users to update immediately or enable automatic updates to reduce the risk of compromise.
Google has also released patches for vulnerabilities in its Chrome browser that may be related, though no direct technical link has been publicly confirmed.
For users, keeping devices up to date remains one of the most effective defenses against advanced cyberattacks. As this case shows, even tightly controlled ecosystems like Apple’s are not immune when attackers move quickly and quietly.
Read also: Hackers Have Found a New Way Around Two-Factor Authentication
