Apple patches decade-old iOS zero-day, possibly exploited by commercial spyware
Summary
Apple patched a decade-old iOS zero-day (CVE-2026-20700) exploited in the wild in a targeted attack. The flaw affects dyld, the iOS dynamic linker, and was part of an exploit chain; Google researchers and Apple note related CVEs and the involvement of commercial spyware actors.