**Apple Rolls Out Patches for 'Sophisticated' Targeted Zero-Day Attacks**

In a move aimed at combating the growing threat of targeted cyberattacks, Apple has released urgent security updates to address newly emerged zero-day vulnerabilities that were used in a sophisticated hacking campaign targeting individual users.

The vulnerabilities, which may have been exploited in an "extremely sophisticated attack against specific targeted individuals," affected versions of iOS prior to iOS 26, according to Apple's security bulletin. The tech giant warned that the flaws could have significant consequences if left unaddressed, emphasizing the need for immediate action to safeguard users.

The vulnerabilities were identified by Google's Threat Analysis Group, which discovered a WebKit remote code execution flaw known as CVE-2025-43529. This particular flaw allows attackers to exploit maliciously crafted web content, highlighting the importance of timely patches and updates in preventing such attacks.

Another vulnerability, dubbed CVE-2025-14174, is reportedly another WebKit flaw that could lead to memory corruption if exploited. Apple revealed that this flaw was discovered by a joint effort between Apple and Google's Threat Analysis Group in partnership. The finding underscores the critical need for collaboration and information sharing among cybersecurity experts in identifying and addressing emerging threats.

The affected devices, as per BleepingComputer, include iPhone 11 and later models; iPad Pro 12.9-inch (3rd generation and later); and iPad Pro 11-inch (1st generation and later). Additionally, the iPad Air (3rd generation and later), the iPad (8th generation and later), and the iPad mini (5th generation and later) are also at risk.

Fortunately, Apple has released patches to address these vulnerabilities in various operating systems, including iOS 26.2 and iPadOS 26.2; iOS 18.7.3 and iPadOS 18.7.3; macOS Tahoe 26.2; tvOS 26.2; watchOS 26.2; visionOS 26.2; and Safari 26.2.

To ensure your device is protected, Apple advises users to install the latest security patch by heading to Settings > General > Software Update. Alternatively, enabling automatic updates will allow your device to receive patches in the future without requiring manual intervention.

Meanwhile, Google has also rolled out patches for vulnerabilities that may be connected to Apple's, although this is not verifiable with currently available information. TechCrunch notes that these patches were released as part of an update to several security bugs in Chrome browser earlier this week. Notably, one of the bugs was being actively exploited by attackers, although no further details have been provided.

The overlap between Google's and Apple's cybersecurity operations suggests a complex web of threats emanating from government-backed hacking groups. The collaboration between these tech giants underscores the importance of information sharing in combating emerging threats and safeguarding users worldwide.