Toggle sidebar Toggle sidebar
Become a MacRumors Supporter for $50/year with no ads, ability to filter front page stories, and private forums.

Apple Urges iPhone Users Running Outdated iOS Versions to Update Immediately

leifp said:
Yeah, dick move Apple. Particularly since I’m a holdout. I have iPadOS 26.3 (“upgraded” on 26.2) and although they made some notable improvements there are not nearly enough of them nor are they good enough. I continue to hold out with all other Apple devices that I own because the UX remains offensive to my eyes and hands.

If you force this on me, which this particular issue is likely to do, I will be even less likely to update (purchase new) my iOS based devices. And that will impact odd devices because Apple is tarnished (no, not that kind) and thus I won’t be upgrading my Watch Ultra this autumn nor my AppleTV until the present device no longer receives any updates. I was kinda tempted by the iPhone Air (I’d rather have a new mini) but not with this behaviour. I’m also in the market for the next generation iPad mini… but not with this behaviour.

And that doesn’t even include Apple’s have-it-both-ways behaviour on high prices for privacy and security but then double dipping on advertising to its own captive market.

Still stuck on the Mac Studio because there are no alternatives. Unless there’s an awesome Mac Pro update!
Click to expand...
The dick move is to encourage people with old phones to upgrade to at least iOS15. That's it. It has nothing to do with iOS26.
 
  • Angry
Reactions: Shirasaki
darngooddesign said:
The dick move is to encourage people with old phones to upgrade to at least iOS15. That's it. It has nothing to do with iOS26.
Click to expand...
That one is in line with their eternal policy of only updating the prior two OS versions with security updates and is the eternal quandary. In fact, it’s outside of their own requirements!

If Apple didn’t offer those security updates I wouldn’t even have a leg to stand on for my beef, because I would be annoyed with a general policy that is well known (this also exists… 🥸). However in this instance they are releasing a security update for my phone and OS but not letting me have it…
 
  • Like
Reactions: vjl323
goshya said:
It seems all iOS 18 versions are affected as well?

ArsTechnica
Click to expand...
There are multiple steps in the exploit chain. It consists of seven different vulnerabilities (six of which need to be used).

Any version of iOS above 18.6 has the first step in the chain patched. So until an alternative exploit is found, those users are (just barely) safe.

Two other steps in the chain are patched for all releases above 18.7.2. The other four are patched in either 18.7.3 or 26.3.

Apple has made a decision that phones that support iOS 26 will no longer receive iOS 18 security patches past 18.7.2. Users on that version are safe for now, as they are protected against three of the seven vulnerabilities. However, they are still technically vulnerable to the other four CVEs (patched in 18.7.3 and 26.3), which could be used in concert with other exploit chains in the future.

Basically, if you care about security, and can run iOS 26, upgrading to that is the best course of action. Otherwise, if you're running an XS or XR, iOS 18.7.6 offers good protection against all but one of the CVEs. But if you're on a newer phone, and still on iOS 18, you're taking a risk by staying on iOS 18.7.2, which lacks the latest security patches.
 
  • Like
Reactions: leifp
Marlor said:
There are multiple steps in the exploit chain. It consists of seven different vulnerabilities (six of which need to be used).

Any version of iOS above 18.6 has the first step in the chain patched. So until an alternative exploit is found, those users are (just barely) safe.

Two other steps in the chain are patched for all releases above 18.7.2. The other four are patched in either 18.7.3 or 26.3.

Apple has made a decision that phones that support iOS 26 will no longer receive iOS 18 security patches past 18.7.2. Users on that version are safe for now, as they are protected against three of the seven vulnerabilities. However, they are still technically vulnerable to the other four CVEs (patched in 18.7.3 and 26.3), which could be used in concert with other exploit chains in the future.

Basically, if you care about security, and can run iOS 26, upgrading to that is the best course of action. Otherwise, if you're running an XS or XR, iOS 18.7.6 offers good protection against all but one of the CVEs. But if you're on a newer phone, and still on iOS 18, you're taking a risk by staying on iOS 18.7.2, which lacks the latest security patches.
Click to expand...
The problem is that iOS 26 lacks much more than that… for some of us. Good ol C-22.

I imagine that I will be forced into an upgrade soon. Unprintable language
 
  • Like
Reactions: WarmWinterHat and vjl323
Marlor said:
Basically, if you care about security, and can run iOS 26, upgrading to that is the best course of action. Otherwise, if you're running an XS or XR, iOS 18.7.6 offers good protection against all but one of the CVEs. But if you're on a newer phone, and still on iOS 18, you're taking a risk by staying on iOS 18.7.2, which lacks the latest security patches.
Click to expand...

And some people with newer phones got in on iOS 18.7.3 which is a little better than iOS 18.7.2 and will probably remain safe from DarkSword and the amateur hackers now using derivatives of it.

However, it looks like CVE-2026-20700 is only fixed in iOS 26.3+ so even the latest version of iOS 18 is waiting for someone to build a new attack chain around it.

I don't think I'm a target of nation-state hackers nor do I visit unusual websites intentionally but it looks like hackers these days are democratizing access to attack chains around zero-day vulnerabilities.

For those who can't get to iOS 26.3.1a (or why not 26.4), I would take another look at Lockdown Mode.
 
SebCohen said:
Most people are, it’s a genetic psychological trait. Some are pathologically so though
Click to expand...

The bigger issue for most people is not so much change but control. People don't like other people changing their worlds. You'd be surprised how much people are happy to change their worlds -- and perhaps even more so others' -- when it suits them.

The other source of resistance is that in most cases the benefits of the change accrue to someone else. 'Don't you see how if you change your workflow this way, we'll be compliant with XYZ standard and then I can get a raise/leave early/etc?'

If you think everyone is resistant to change no matter what, try this: walk into your office and give everyone a 20% raise. I'd be surprised if you find 1 recipient out of 20 objecting to that change. Granted if you're not the owner of the company, he or she might object to that change...
 
  • Love
Reactions: xhantos and turbineseaplane
You must log in or register to reply here.
Register on MacRumors! This sidebar will go away, and you'll see fewer ads.
Top Bottom
Back