Hundreds of millions of iPhone users around the world are facing a pressing security threat after Apple confirmed that a sophisticated cyberattack is exploiting two critical vulnerabilities in WebKit, the browser engine powering Safari and all browsers on iOS. According to Fox News, these vulnerabilities could allow attackers to gain control of affected devices, potentially stealing passwords or sensitive payment information. The news has sent a jolt through the Apple community, with many users scrambling to update their devices and protect themselves from possible harm.
Apple acted swiftly once the flaws were discovered, releasing a patch in the latest software update. However, as of January 20, 2026, only about half of all users had updated to iOS 26, leaving hundreds of millions of devices still at risk. The urgency of the situation cannot be overstated, as the flaws impact a wide range of Apple products, including iPhone 11 and later, iPad Pro 12.9-inch 3rd generation and later, iPad Pro 11-inch 1st generation and later, iPad Air 3rd generation and later, iPad 8th generation and later, and iPad mini 5th generation and later.
In an official statement on its website, Apple emphasized, “Keeping your software up to date is one of the most important things you can do to maintain your Apple product’s security.” The company’s message is clear: users must act quickly to safeguard their devices and personal information.
Forbes outlined the steps iPhone users should take to ensure their devices are protected: “Go to Settings > General > Software Update. If your iPhone is not running either iOS 26.2 or iOS 18.7.3, go to Settings > General > Shut Down and power the device off. Or you can press and hold either volume button and the side button until the power-off slider appears,” Apple says. If that doesn’t work, you can force it to restart.” It’s a straightforward process, but one that many users have yet to complete, raising concerns among cybersecurity experts and Apple itself.
Adding to the sense of urgency, Apple made a significant decision in December 2025 that affects millions of iPhone users. According to a report from Filmogaz, this move means that hundreds of millions of devices must be updated promptly to ensure security and functionality. The release of iOS 26 marked a turning point for Apple’s mobile operating system, replacing iOS 18 and ushering in a new era of features and protections. However, not all devices are eligible for the new update. The iPhone XS, XS Max, and XR, for example, cannot upgrade to iOS 26. Instead, these models received the iOS 18.7.3 update on December 12, 2025, which also addressed critical security issues.
All iPhones from the iPhone 11 onward are compatible with iOS 26, and Apple has been urging users to make the switch without delay. The company typically launches new software alongside its latest iPhone models each September, and this year was no exception. The rollout of iOS 26 was accompanied by alternative updates—iOS 18.7 and 18.7.1—to ease users into the new system. By December 12, iOS 18.7.3 and iOS 26.2 became available, offering crucial security fixes for both older and newer devices.
Apple’s message to its customers has been consistent: delaying an upgrade not only leaves devices vulnerable to cyberattacks but also means missing out on valuable new features and performance improvements. As stated by Apple, “Keeping your software up to date is one of the most important things you can do to maintain your Apple product’s security.” This isn’t just marketing speak; it’s a practical warning in the face of real and present cyber threats.
According to Fox News, the vulnerabilities in WebKit allowed attackers to gain control of affected devices. This could mean unauthorized access to everything from saved passwords to sensitive payment data—essentially, the keys to a user’s digital life. The risks are not hypothetical. Cybercriminals are known to exploit such flaws quickly, and the longer users wait to update, the greater the chance that their devices could be compromised.
Despite Apple’s quick response, the adoption rate of iOS 26 remains sluggish. As of January 20, 2026, only about 50% of users had installed the update. The reasons for this hesitation vary. Some users may be concerned about changes to the interface, while others might simply be unaware of the urgency. But as Filmogaz points out, “the benefits far outweigh any potential drawbacks.” Security experts agree that the new update is essential, not only for protection but also for accessing the latest features and ensuring optimal device performance.
For those using iPhone XS, XS Max, or XR, the situation is slightly different. Since these models cannot upgrade to iOS 26, Apple released iOS 18.7.3 to address the most pressing security issues. While this update keeps these older devices protected for now, it also signals that their days of receiving major new features are numbered. Users with these models should be especially vigilant about keeping their software up to date and may want to consider upgrading their devices in the near future.
Apple’s approach to rolling out updates is rooted in its regular release cycle, typically launching new software each September alongside fresh iPhone models. This ensures that users have access to the latest protections and innovations. Yet, as the current situation demonstrates, the effectiveness of these updates depends on users actually installing them. The company’s advice is clear and consistent: update now to stay safe.
For those unsure whether their device is protected, the process is simple. Open Settings, tap General, then Software Update. If your device is eligible for iOS 26.2 or iOS 18.7.3, install it immediately. If the update isn’t available, try shutting down or force restarting the device, as recommended by Apple. These steps can make the difference between a secure device and one that’s vulnerable to attack.
As the threat landscape continues to evolve, Apple’s swift response and clear guidance offer a roadmap for users to protect themselves. But the responsibility ultimately lies with each user to take action. With hundreds of millions of devices still at risk, the message is unmistakable: don’t wait. Update your iPhone or iPad today and stay one step ahead of cybercriminals.
The episode serves as a stark reminder of the constant tug-of-war between tech giants and hackers. While Apple’s rapid deployment of security patches demonstrates its commitment to user safety, the real test is whether users heed the call to update. For now, the ball is in their court.
:sharpen(0.5,0.5,true)/tpg%2Fsources%2Ffbc7479d-b5ff-4050-b2e8-3bdfbbbb9363.jpeg)