Feds take notice of iOS vulnerabilities exploited under mysterious circumstances

CISA has ordered federal agencies to patch three critical iOS vulnerabilities after Google revealed they were exploited across three distinct hacking campaigns over 10 months. The campaigns used an advanced exploit kit called Coruna, which chains 23 iOS exploits into five potent attack sequences. Coruna features a novel JavaScript obfuscation framework, fingerprinting capabilities, and WebKit exploits with pointer authentication code bypasses. The kit targets iOS versions 13 through 17.2.1 and is ineffective against Apple Lockdown mode or private browsing. Notably, all vulnerabilities were patched before Coruna used them, making them 'second-hand zero-days' repurposed against unpatched devices.