Millions of iPhones Vulnerable as Apple Tests New Security Update

Apple is addressing a critical security issue as millions of iPhones remain vulnerable to significant threats. The tech giant has initiated testing of a new feature called Background Security Improvements, aimed at enhancing security without requiring full software updates. This comes during a period when many users continue to operate outdated software, thereby missing essential protections.

Recent attacks revealed severe vulnerabilities within Apple’s system, specifically targeting WebKit, the underlying engine for the Safari browser. Attackers exploited these weaknesses in sophisticated and targeted campaigns. Apple released a fix for these flaws in iOS 26.2 in December. Despite this, data indicates that a majority of users have not installed the update, leaving numerous devices exposed to known risks.

The latest statistics illustrate a concerning trend: only a small percentage of active iPhones are running on iOS 26, with many still using older versions, such as iOS 18. This delay in updating has raised alarms among security experts, who emphasize that users who postpone updates are often prime targets for cyber attackers.

To combat this issue, Apple is currently testing the Background Security Improvements feature in the iOS 26.3 beta. This new system is designed to deliver critical security updates seamlessly, focusing on vulnerable areas like Safari and WebKit. By streamlining the update process, Apple aims to minimize disruption for users, addressing prior feedback regarding the older Rapid Security Response feature, which saw limited usage and faced operational challenges.

The new background system operates quietly, installing smaller updates automatically. Users can enable this feature through the Privacy and Security settings on their devices. It is important to note that the current beta updates are not actual security fixes; rather, they are part of Apple’s efforts to test the effectiveness of the new delivery mechanism.

Despite these advancements, security risks remain elevated. Apple has ceased providing the latest security updates for iOS 18 on devices capable of running iOS 26. This decision underscores the necessity for users to upgrade to stay protected. Security experts affirm that the only way to mitigate the risk of ongoing spyware attacks is through upgrading to the latest software.

In response to these threats, Apple has issued alerts to users across several countries, warning them about ongoing spyware campaigns targeting specific individuals. Researchers anticipate that such attacks will persist as web browsers become increasingly integral to both work and daily life.

This situation underscores a significant challenge for Apple: even the most robust security measures are ineffective if users do not keep their devices updated. The introduction of the Background Security Improvements system reflects Apple’s commitment to bridging this gap. The success of this initiative will largely depend on user adoption of the latest software in the months ahead.