DigiNews

Summary

Ars Technica reports that CISA has ordered federal agencies to patch three critical iOS vulnerabilities exploited in a ten-month campaign using the Coruna exploit kit. Google researchers revealed Coruna’s 23 exploits across iOS versions 13 through 17.2.1 and noted that three CVEs have been added to the Known Exploited Vulnerabilities catalog, with mitigations urged for organizations, including applying vendor guidance or discontinuing affected products if needed.